[Freedombox-discuss] Dropping support for older TLS protocols
Sunil Mohan Adapa
sunil at medhas.org
Thu Sep 2 02:49:21 BST 2021
Hi,
We have decided to drop support for SSLv3, TLS1 and TLS1.1 in
FreedomBox. This will happen in version 21.9 which will reach all users
in about 2 weeks time. This change should not effect you unless you are
using a very old web client to access FreedomBox web server.
The following versions of client software will be needed to connect to
FreedomBox web server:
- Firefox: 27
- Android: 4.4.2
- Chrome: 31
- Edge: 12
- IE: 11 (Win7),
- Java: 8u31
- OpenSSL: 1.0.1
- Opera: 20
- Safari: 9
Thanks to Joseph Nuthalapati for driving and implementing the change.
Further reading:
- Mozilla SSL Configuration Generator for 'intermediate'
compatibility configuration:
https://wiki.mozilla.org/Security/Server_Side_TLS
- IETF RFC 7525:
https://datatracker.ietf.org/doc/html/rfc7525#section-3.1.1
- NIST: Guidelines for the Selection, Configuration, and Use
of Transport Layer Security (TLS) Implementations:
https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-52r2.pdf
--
Sunil
More information about the Freedombox-discuss
mailing list