[openssl-users] SSL version status
Viktor Dukhovni
openssl-users at dukhovni.org
Wed Jan 27 19:52:06 UTC 2016
> On Jan 27, 2016, at 8:56 AM, Nulik Nol <nuliknol at gmail.com> wrote:
>
> How much old browsers are out there that
> still use older SSL versions? Because, Wikipedia says SSL 3.0 was
> deprecated by Jun 2015 but if I only implement TLS, I may lose many
> visitors with old browsers, right ?
You do not have to enable SSLv3. It is use is exceedingly rare
these days. You will not lose interoperability with a non-negligible
number of clients. Make sure SSLv2 and SSLv3 are both disabled.
See https://tools.ietf.org/html/rfc7525 for guidelines.
--
Viktor.
More information about the openssl-users
mailing list