Opened 5 months ago

Last modified 8 weeks ago

#1478 assigned Feature Wish

Consider remove TLS 1.0/1.1, and recommend using TLS 1.3, if not possible for now, mark TLS 1.0/1.1 as insecure, remove TLS 1.0/1.1 in the future.

Reported by: A Owned by: plaisthos
Priority: major Milestone:
Component: Generic / unclassified Version:
Severity: Not set (select this one, unless your'e a OpenVPN developer) Keywords:
Cc:

Description

Consider remove TLS 1.0/1.1, and recommend using TLS 1.3, if not possible for now, mark TLS 1.0/1.1 as insecure, remove TLS 1.0/1.1 in the future.

Change History (1)

comment:1 Changed 8 weeks ago by Gert Döring

Owner: set to plaisthos
Status: newassigned

If I'm not mistaken, OpenVPN 2.6 with OpenSSL 3.0.x will do that already - disable TLS 1.0 and 1.1 unless explicitly enabled. Plaisthos, can you confirm?

Note: See TracTickets for help on using tickets.