[Haskell-cafe] heads-up: tls v2.0.0
Viktor Dukhovni
ietf-dane at dukhovni.org
Fri Jan 19 20:04:17 UTC 2024
On Fri, Jan 19, 2024 at 06:41:55PM +0900, Kazu Yamamoto (山本和彦) via Haskell-Cafe wrote:
> > TLS is not just for the web. There are various application ecosystems
> > that are noticeably less agile than web browsers, and substantially not
> > at risk from the various browser-related attacks on TLS 1.0.
>
> Why cannot you switch to TLS 1.2?
I don't control the software stacks used by others, with whom I still
need to communicate. Or with legacy devices, ...
> TLS 1.2 is 16 year old, very similar to TLS 1.0 and much more secure.
But note that TLS 1.0 is much more secure than cleartext. It is fine to
disable it by default, but I would prefer that it still be available.
--
Viktor.
More information about the Haskell-Cafe
mailing list