On 5/22/2015 7:07 AM, Sam Varshavchik wrote:
>
>
> But, if MS-Window is going to force everyone to finally drop SSL3, 
> that's fine. I'll drop it from the default configuration too.
PCI compliance current suggest using TLS1.1 or higher.  They will accept 
TLS1 if you can attest that you have a patched version of openssl.  
There are still many "modern" clients (iphone 5, outlook) that cannot do 
anything above TLS1.


-- 
Regards
--------------------------------------
Gerald Drouillard
Technology Architect
Drouillard & Associates, Inc.
http://www.Drouillard.biz


------------------------------------------------------------------------------
One dashboard for servers and applications across Physical-Virtual-Cloud 
Widest out-of-the-box monitoring support with 50+ applications
Performance metrics, stats and reports that give you Actionable Insights
Deep dive visibility with transaction tracing using APM Insight.
http://ad.doubleclick.net/ddm/clk/290420510;117567292;y
_______________________________________________
courier-users mailing list
courier-users@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Reply via email to