Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update TIdSSLIOHandlerSocketOpenSSL to enable TLS 1.1 and 1.2 by default #13

Open
rlebeau opened this issue Aug 16, 2017 · 0 comments
Open

Update TIdSSLIOHandlerSocketOpenSSL to enable TLS 1.1 and 1.2 by default #13

rlebeau opened this issue Aug 16, 2017 · 0 comments
Assignees
@rlebeau
Labels
Element: SSL/TLS Issues related to SSL/TLS handling, TIdSSLIOHandlerSocketBase and descendants Status: In Progress Issue is being worked on Type: Maintenance Issue is proposing maintenance of existing code
Milestone
IndyTLSOpenSSL 1.0

Comments

@rlebeau
Copy link
Member

rlebeau commented Aug 16, 2017
edited
Loading

TIdSSLIOHandlerSocketOpenSSL currently enables only TLS 1.0 by default, but public servers are slowly moving away from TLS 1.0 and now requiring TLS 1.1 and higher, so the SSLOptions.SSLVersions property should be updated to enable TLS 1.1 and 1.2 by default.

FYI, many servers, like Office 365, are even starting to drop support for TLS 1.1 and now require TLS 1.2 or higher only.

Also, read up about the BEAST attack against TLS 1.0.
@rlebeau rlebeau added Type: Enhancement Issue is proposing a new feature/enhancement Element: SSL/TLS Issues related to SSL/TLS handling, TIdSSLIOHandlerSocketBase and descendants labels Aug 16, 2017
@rlebeau rlebeau mentioned this issue Feb 26, 2018
Open
@rlebeau rlebeau self-assigned this May 24, 2018
@rlebeau rlebeau mentioned this issue Jun 12, 2020
Closed
@rlebeau rlebeau mentioned this issue Apr 18, 2022
Open
@rlebeau rlebeau mentioned this issue Feb 22, 2023
Closed
@rlebeau rlebeau added Type: Maintenance Issue is proposing maintenance of existing code Status: Accepted Issue has been accepted to be worked on and removed Type: Enhancement Issue is proposing a new feature/enhancement labels Apr 25, 2023
@rlebeau rlebeau mentioned this issue Aug 6, 2024
Merged
@rlebeau rlebeau transferred this issue from IndySockets/Indy Dec 12, 2024
@rlebeau rlebeau added Status: In Progress Issue is being worked on and removed Status: Accepted Issue has been accepted to be worked on labels Dec 14, 2024
@rlebeau rlebeau added this to the IndyTLSOpenSSL 1.0 milestone Dec 14, 2024
@rlebeau rlebeau moved this to In Progress in OpenSSL 3.x upgrade Dec 15, 2024
@rlebeau rlebeau moved this to In progress in Indy 10.7 Dec 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rlebeau rlebeau

Labels
Element: SSL/TLS Issues related to SSL/TLS handling, TIdSSLIOHandlerSocketBase and descendants Status: In Progress Issue is being worked on Type: Maintenance Issue is proposing maintenance of existing code
Projects
Indy 10.7
Status: In progress
Milestone
IndyTLSOpenSSL 1.0
Development

No branches or pull requests
1 participant
@rlebeau