Opened 21 months ago
Last modified 17 months ago
#1478 assigned Feature Wish
Consider remove TLS 1.0/1.1, and recommend using TLS 1.3, if not possible for now, mark TLS 1.0/1.1 as insecure, remove TLS 1.0/1.1 in the future.
| Reported by: | A | Owned by: | plaisthos |
|---|---|---|---|
| Priority: | major | Milestone: | |
| Component: | Generic / unclassified | Version: | |
| Severity: | Not set (select this one, unless your'e a OpenVPN developer) | Keywords: | |
| Cc: |
Description
Consider remove TLS 1.0/1.1, and recommend using TLS 1.3, if not possible for now, mark TLS 1.0/1.1 as insecure, remove TLS 1.0/1.1 in the future.
Change History (1)
comment:1 Changed 17 months ago by
| Owner: | set to plaisthos |
|---|---|
| Status: | new → assigned |
Note: See
TracTickets for help on using
tickets.
If I'm not mistaken, OpenVPN 2.6 with OpenSSL 3.0.x will do that already - disable TLS 1.0 and 1.1 unless explicitly enabled. Plaisthos, can you confirm?