Outdated TLS
Posted: 14 Feb 2020 08:03
Since TLS 1.0 and TLS 1.1 will be phased out on March 2020, i would like to suggest removing/disabling it in EFA.
An additional request would be to integrate the Mozilla SSL Config list, which contains all the secure cihpers so you don't have to edit/remove them manually. (https://ssl-config.mozilla.org/)
I have manually disabled the TLS 1.0 and 1.1 of smtp/smtpd for now but adding it as an option would be great.
It does show a few other warnings:
https://en.internet.nl/mail/uitvaartver ... nl/321661/
- Client-initiated renegotiation
- Key Exchange parameters
- Cipher Order
Also see: https://github.com/E-F-A/v4/issues/113
An additional request would be to integrate the Mozilla SSL Config list, which contains all the secure cihpers so you don't have to edit/remove them manually. (https://ssl-config.mozilla.org/)
I have manually disabled the TLS 1.0 and 1.1 of smtp/smtpd for now but adding it as an option would be great.
It does show a few other warnings:
https://en.internet.nl/mail/uitvaartver ... nl/321661/
- Client-initiated renegotiation
- Key Exchange parameters
- Cipher Order
Also see: https://github.com/E-F-A/v4/issues/113