[Modules] TLS 1.2 support
Simon Josefsson
simon at josefsson.org
Mon Aug 10 04:45:15 EDT 2009
Sergey Proskurnya <alaley at gmail.com> writes:
> Thanks!
>
> It seems that only MS's IIS7 have TLS 1.2 support for now (niether
> Java nor OpenSSL).
> So mod_gnutls is only the hope.
Does IIS7 reject clients that have TLS < 1.2? Otherwise using TLS 1.1
against it should work fine. Or do you want to use some of the new
features in TLS 1.2 in particular? Understanding your use case helps me
to prioritize when to finish the TLS 1.2 support.
/Simon
>
> On Mon, Aug 10, 2009 at 11:19 AM, Simon Josefsson<simon at josefsson.org> wrote:
>> Sergey Proskurnya <alaley at gmail.com> writes:
>>
>>> Hello everybody,
>>>
>>> I see that latest versions of GnuTLS supports TLS 1.2,
>>> but the mod_gnutls page
>>> (http://www.outoforder.cc/projects/apache/mod_gnutls/) says that TLS
>>> 1.1 only supported. Is that information outdated and it is possible to
>>> build TLS 1.2 compiant HTTPS server using mod_gnutls?
>>
>> Alas, the TLS 1.2 protocol changed in the last I-D's, so GnuTLS's TLS
>> 1.2 support is not finished. I hope this will change in the near future
>> though, on the development branch.
>>
>> /Simon
>>
> _______________________________________________
> Modules mailing list
> Modules at lists.outoforder.cc
> http://lists.outoforder.cc/mailman/listinfo/modules
More information about the Modules
mailing list