Opened 9 months ago

Last modified 9 months ago

#16350 new task

Disable TLS 1.0/1.1 on dev.haiku-os.org

Reported by: Coldfirex Owned by: nielx
Priority: normal Milestone: Unscheduled
Component: Website/Trac Version:
Keywords: Cc:
Blocked By: Blocking:
Platform: All

Description

Per best security practices we should look into disabling TLS 1.0 and 1.1 on dev.haiku-os.org. It is already disabled on the main website.

Change History (4)

comment:1 by nielx, 9 months ago

Could you make the case for this?

comment:2 by Coldfirex, 9 months ago

Because it has known security issues, the security community has been advising everyone to disable it for years, and all web browsers are planning on dropping support for it.

comment:3 by nielx, 9 months ago

Have you checked Haiku's support for TLS 1.2 and up?

comment:4 by Coldfirex, 9 months ago

No, but if the main website pulls up under Haiku then it is supported (it is TLS 1.2+ only).

Note: See TracTickets for help on using tickets.