Web lists-archives.com

Re: OpenSSL disables TLS 1.0 and 1.1


My concern is less about https (hello iloms), but other kind of protocols. Ssl vpn, rdp servers, voip, etc. And embedded devices implements this protocols.

On Aug 8, 2017 7:35 AM, "Stephan Seitz" <stse+debian@xxxxxxxxxxxxxxxxxxx> wrote:
On Mo, Aug 07, 2017 at 11:18:38 -0500, Michael Lustfield wrote:
Is there an actual need for the removal of TLS v1.{0,1}? Are either
considered broken or unsupported by upstream? If not, I'd be much more

That’s I like to know as well.

Doing a quick check on my appliances I could find the following TLSv1-only devices:
- some iDRAC (Dell)
- Netapp Filer
- Cisco Web Security Appliances

And what about mail appliances? If they offer only TLSv1 then the Debian mailserver will fallback to unencrypted transfer. I don’t think this is a good idea.

Shade and sweet water!


| Public Keys: http://fsing.rootsland.net/~stse/keys.html |