Quote:
Originally Posted by Klen
Not this shit again lol. I guess it will be enough to update package openssl ?
|
TLS 1.3 is fairly new and is officially considered "experimental", so I had to upgrade both Apache and OpenSSL.
Even though it's experimental the major browsers already support it. I saw 70%+ of IPs switch to 1.3 once I had upgraded.
It's important to note that even though modern browsers have moved to TLS 1.2/1.3 by default, there's still some oddball and obsolete browsers which only support 1.0 or 1.1. So unless you're accepting credit card or personal info - the older versions are insecure - it may be worth considering still supporting those.