Hello, don't know if this mail reached the people, sorry if yes, but didn't seen any replies.
Thanks > Sent: Monday, August 07, 2017 at 10:03 AM > From: "Ilya Abimael" <[email protected]> > To: [email protected] > Subject: OpenSSL in Debian Unstable drops TLS 1.0/1.1 support > > Hello, > > fyi: > > https://news.ycombinator.com/item?id=14944849 > > https://lists.debian.org/debian-devel-announce/2017/08/msg00004.html > > ---------- > Hi, > > I've just uploaded a version of OpenSSL to unstable that disables > the TLS 1.0 and 1.1 protocol. This currently leaves TLS 1.2 as the > only supported SSL/TLS protocol version. > > This will likely break certain things that for whatever reason > still don't support TLS 1.2. I strongly suggest that if it's not > supported that you add support for it, or get the other side to > add support for it. > > OpenSSL made a release 5 years ago that supported TLS 1.2. The > current support of the server side seems to be around 90%. I hope > that by the time Buster releases the support for TLS 1.2 will be > high enough that I don't need to enable them again. > > > Kurt > ---------- > > AFAIK LibreSSL still supports TLS 1.0; 1.1. > > When will these two old versions be removed? Or still too much stuff uses > them? > > Thanks!
