[openssl-users] SSL version status

Viktor Dukhovni openssl-users at dukhovni.org
Wed Jan 27 19:52:06 UTC 2016


> On Jan 27, 2016, at 8:56 AM, Nulik Nol <nuliknol at gmail.com> wrote:
> 
> How much old browsers are out there that
> still use older SSL versions? Because, Wikipedia says SSL 3.0 was
> deprecated by Jun 2015 but if I only implement TLS, I may lose many
> visitors with old browsers, right ?

You do not have to enable SSLv3.  It is use is exceedingly rare
these days.  You will not lose interoperability with a non-negligible
number of clients.  Make sure SSLv2 and SSLv3 are both disabled.

See https://tools.ietf.org/html/rfc7525 for guidelines.

-- 
	Viktor.





More information about the openssl-users mailing list