If you run a server, website email server etc - check TLS/SSL
 

as some might know already



if you use a ssl cert on your site etc TLS 1.0 & TLS 1.1 encryption is no longer supported ,



(SSL 1.0, 2.0 was unsupported since 2011 and SSL 3.0 was unsupported since 2015 ) you shouldn't of been using this encryption at all



TLS 1.2 & TLS 1.3 are ok



and from January 2020 will be starting to remove TLS 1.0 & TLS 1.1 from most browsers and fully be removed by March 2020





https://www.ssllabs.com/ssltest/ is a good site to test your site etc



https://wiki.mozilla.org/Security/Server_Side_TLS is good site to show how to change your settings

Appreciate the heads up, thanks!

Ok but what exactly need to be done to upgrade on most popular os-es like debian and cent os ?

get the word out to Hillary :thumbsup

you will be surprise

how many sites use so called IT companies and there sites still use ssl 2.0 3.0 and they pay them $1000's

you can also use this site

https://ssl-config.mozilla.org/

Well, there is still a lot of companies on Windows XP so :1orglaugh

Why discount those on WindowsME?

I miss Bob!

As a consumer, I think it's good practice to disallow TLS 1.0/TLS 1.1 now, so you can clearly see when a site hasn't had its security config updated since before 2008 (when TLS 1.2 was introduced)

Firefox is now warning people anyway. If the site only supports 1.0/1.1, it throws up a dialog and asks if you want to make an exception. (Unfortunately it seems to be a global config thing, not on a per-site basis, so you have to go and manually unset it later)

I've personally only run across a handful of sites that don't support TLS 1.2+, but one of them handles CC info. Pretty dodgy.

bump bump

this a good time to do this !!!

bump bump