[SSL Observatory] TLS 1.1/1.2 support
Erwann ABALEA
erwann at abalea.com
Sun Aug 21 23:50:32 PDT 2011
2011/8/22 Peter Gutmann <pgut001 at cs.auckland.ac.nz>:
[...]
> Wow. I knew that (public) deployment of TLS 1.2 was practically nonexistent
> (too many gratuitous changes from 1.1 with no real benefit to justify the cost
> of deployment), but didn't realise that 1.1 was so small as well. What did
> the test client offer in its hello? Could this be some artefact of the way it
> did the handshake? I'm somewhat surprised that 1.1 rated so low.
If the client used OpenSSL, then TLS1.0 was the max version it could
detect (and in this case, then 1.1 is an error).
Same goes for Apache+mod_ssl.
--
Erwann.
More information about the Observatory
mailing list