2017-05-05 7:55 GMT+02:00 Stefan Eissing <stefan.eiss...@greenbytes.de>:
> Looks like almost all our users will need to reconfigure their cipher > suites, once we ship 2.4.26 and they install OpenSSL 1.1.x: > > "If you explicitly configure your ciphersuites then care should be taken > to ensure that you are not inadvertently excluding all TLSv1.3 compatible > ciphersuites." > > https://www.openssl.org/blog/blog/2017/05/04/tlsv1.3/ > > I think it would be worth adding a note/section in our docs for TLSv1.3, it would help people to find the right info while searching "httpd + TLSv1.3" on search engines. Maybe just upgrading http://httpd.apache.org/docs/current/mod/mod_ssl.html is enough? Luca