And the senseless destruction of harmless
public websites continues:
All Major Web Browsers Will Remove TLS 1.0 and TLS 1.1 Support in 2020
https://thehackernews.com/2018/10/web-browser-tls-support.html
Quote
Since TLS implementation in all major web browsers and applications supports downgrade negotiation process, it leaves an opportunity for attackers to exploit weaker protocols even if a server supports the latest version.
According to the press releases published by four major companies, Google, Microsoft, Apple and Mozilla, their web browsers will completely drop TLS 1.0 and 1.1support by default in the first half of 2020.
All the tech companies recommended websites that do not support TLS 1.2 or newer to move off of the old versions of the protocol as soon as possible and is practical.
Furthermore, the PCI Data Security Standard (PCI DSS) compliance also requires websites to disable SSL/TLS 1.0 implementation by June 30, 2018.
Those modern browsers have no prob to handle modern TLS of course, but ALL https-WEBSITES are forced to offer that too, no matter how harmless their content.
How many
non-corporate owners of very old but still very useful websites will have huge problems to update their sites to that most modern standards? That is, if they even are still around, considering the mass of abandoned sites??
And also wondering - are those offering automatic TLS downgrade for old browsers on their public sites now even FORCED to completely kick out old browsers too??
IMO that whole stuff is just to enforce yet more exclusive web monopolies for big corporations.
While authors of old useful, public websites and users of old systems and (less spyware infested) old browsers get completely kicked out for good
Edited 1 time(s). Last edit at 07/20/2019 04:43PM by siria.