Re: TLS question

[Lee]

On 6/18/18, Andy K  wrote:
> If I have TLS 1.0,1.1, and 1.2 checked off, will my browser use the most
> secure version whenever it connnects?

As long as there's no man-in-the-middle - yes.  see
  https://en.wikipedia.org/wiki/Downgrade_attack

Some anti-virus products play MITM so they can check your web traffic;
a browser tls check site is
  https://www.ssllabs.com/ssltest/viewMyClient.html

In the 'probably not worth worrying about as long as you don't click
through security warnings' category are
  https://en.wikipedia.org/wiki/DNS_cache_poisoning
  https://en.wikipedia.org/wiki/BGP_hijacking
which can introduce a MITM.

> Some sites do not work if I have only 1.1 and 1.2 ticked off.

Which ones?

Regards,
Lee
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey

TLS question

[Andy K]

If I have TLS 1.0,1.1, and 1.2 checked off, will my browser use the most secure 
version whenever it connnects?

Some sites do not work if I have only 1.1 and 1.2 ticked off.

Thanks.
___
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey