Re: Default TLS protocols

2022-01-10 Thread Demi Marie Obenour
On 1/10/22 07:23, Viktor Dukhovni wrote: > On Mon, Jan 10, 2022 at 12:50:49PM +0100, Kveta Kladov wrote: > >> RFC 8996 deprecated TLS 1.0 and TLS 1.1 . >> >> Would you consider to update default values for >> >> smtp_tls_mandatory_protocols >> smtp_tls_protocols, >> smtpd_tls_mandatory_protocols

Re: Re: Default TLS protocols

2022-01-10 Thread Kveta Kladov
> RFC 8996 deprecated TLS 1.0 and TLS 1.1 . > > Would you consider to update default values for > > smtp_tls_mandatory_protocols > smtp_tls_protocols, > smtpd_tls_mandatory_protocols > smtpd_tls_protocols > > so that TLS 1.0 and TLS 1.1 are disabled by default ? There's no clear ben

Re: Default TLS protocols

2022-01-10 Thread Viktor Dukhovni
On Mon, Jan 10, 2022 at 12:50:49PM +0100, Kveta Kladov wrote: > RFC 8996 deprecated TLS 1.0 and TLS 1.1 . > > Would you consider to update default values for > > smtp_tls_mandatory_protocols > smtp_tls_protocols, > smtpd_tls_mandatory_protocols > smtpd_tls_protocols > > so that TLS 1.0 and TLS

Re: Default TLS protocols

2022-01-10 Thread Matus UHLAR - fantomas
On 10.01.22 12:50, Kveta Kladov wrote: RFC 8996 deprecated TLS 1.0 and TLS 1.1 . Would you consider to update default values for smtp_tls_mandatory_protocols smtp_tls_protocols, smtpd_tls_mandatory_protocols smtpd_tls_protocols so that TLS 1.0 and TLS 1.1 are disabled by default ? for mandat

Default TLS protocols

2022-01-10 Thread Kveta Kladov
RFC 8996 deprecated TLS 1.0 and TLS 1.1 . Would you consider to update default values for smtp_tls_mandatory_protocols smtp_tls_protocols, smtpd_tls_mandatory_protocols smtpd_tls_protocols so that TLS 1.0 and TLS 1.1 are disabled by default ?