On 2/22/17, JAS <[email protected]> wrote: <.. snip ..> > Should a person have TLS 1.0 checked or not?
Ideally, TLS 1.0 and 1.1 shouldn't be used. But are you willing to not visit sites unless they do TLS 1.2? I'm not for sites where I'm just browsing.. but I don't care if the NSA knows which sites I'm looking at on the wayback machine or which movies I'm watching on archive.org. (good for them! I just checked archive.org & they do tls 1.2 now :) If you care about NIST standards: https://www.nist.gov/publications/guidelines-selection-configuration-and-use-transport-layer-security-tls-implementations ... recommends that agencies develop migration plans to TLS 1.2 by January 1, 2015. I wonder how many .gov sites are actually doing tls1.2 now. Regards, Lee _______________________________________________ support-seamonkey mailing list [email protected] https://lists.mozilla.org/listinfo/support-seamonkey
