Hello >> But I don't think disable TLS 1.0 is ok. >> > > TLS 1.0 is dead and is even now banned in new installations according to > the PCI DSS 3.1 standards. Nobody should expect TLS 1.0 to be supported > by *any* HTTPS site now.
Maybe is dead but is used in many old browser / software still used. In PCI DSS 3.1 merchants must remove SSL and TLS 1.0 to 30 June 2016. (new installations "in theory" should not be built on TLS 1.0). So we have 1 year and FreeBSD forum is not e-commerce site ;) Best Regards. _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
