Date: Thu, 14 May 2015 07:13:32 -0700 From: jungle Boogie <jungleboogie0@gmail.com> To: Mark Felder <feld@freebsd.org> Cc: freebsd-security@freebsd.org Subject: Re: Forums.FreeBSD.org - SSL Issue? Message-ID: <CAKE2PDtM6q14q2BdmB5PNht=Q3Q0VQRh64nh1Lfd9Y9uCryibw@mail.gmail.com> In-Reply-To: <1431608885.1875421.268665801.1220FE34@webmail.messagingengine.com> References: <CACRVPYOALi-V8D34zeJTYdSwHshYrqtttqVV3=aP8Yb6ZAxfyg@mail.gmail.com> <2857899F-802E-4086-AD41-DD76FACD44FB@modirum.com> <05636D22-BBC3-4A15-AC44-0F39FB265CDF@patpro.net> <20150514193706.V69409@sola.nimnet.asn.au> <555476CB.2010005@ivpro.net> <1431608885.1875421.268665801.1220FE34@webmail.messagingengine.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 14 May 2015 at 06:08, Mark Felder <feld@freebsd.org> wrote: > > > On Thu, May 14, 2015, at 05:19, Adam Major wrote: >> Hello >> >> I checked now by sslLabs.com: >> https://www.ssllabs.com/ssltest/analyze.html?d=forums.freebsd.org >> >> and score is A+ >> >> But I don't think disable TLS 1.0 is ok. >> > > TLS 1.0 is dead and is even now banned in new installations according to > the PCI DSS 3.1 standards. Nobody should expect TLS 1.0 to be supported > by *any* HTTPS site now. Here, here! We ONLY have 1.0 enabled until the hardware vendor can upgrade their software. I'm looking to celebrate the day when we have 1.1 and 1.2 enabled. -- ------- inum: 883510009027723 sip: jungleboogie@sip2sip.info xmpp: jungle-boogie@jit.si
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAKE2PDtM6q14q2BdmB5PNht=Q3Q0VQRh64nh1Lfd9Y9uCryibw>