[SSL Observatory] TLS 1.1/1.2 support
Larry Seltzer
larry at larryseltzer.com
Sun Aug 21 15:51:33 PDT 2011
I recently noticed that Firefox appears to support only TLS 1.0, not
1.1 or 1.2. Windows (and therefore IE) only began supporting 1.1 and
1.2 in Windows 7, but they are turned off by default. The reason why
is in this blog post:
http://blogs.msdn.com/b/ieinternals/archive/2011/03/25/misbehaving-https-servers-impair-tls-1.1-and-tls-1.2.aspx
It explains that many older HTTPS servers freak out at 1.1 and 1.2
clients and return a "Fatal Alert: Protocol Version" error.
Perhaps SSL/TLS version support would be a good feature for future scans.
LJS
More information about the Observatory
mailing list