Results 1 to 8 of 8

Thread: Tls 1.3

  1. #1
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    893

    Default Tls 1.3

    Curious how far out this (TLS 1.3) within UT might be? :-(

    "It's official: TLS 1.3 approved as standard while spies weep"
    https://www.theregister.co.uk/2018/0...s_13_approved/
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

  2. #2
    Untangle Ninja jcoehoorn's Avatar
    Join Date
    Mar 2010
    Location
    York, NE
    Posts
    1,588

    Default

    They'll likely have it when OpenSSL has it... and since OpenSSL has had some draft support for over a year, it's probably very soon.
    Five time Microsoft ASP.Net MVP managing a Lenovo RD330 / E5-2420 / 16GB with Untangle 14.0 to protect 700Mbits for ~400 residential college students and associated staff and faculty

  3. #3
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    893

    Default

    Quote Originally Posted by jcoehoorn View Post
    They'll likely have it when OpenSSL has it... and since OpenSSL has had some draft support for over a year, it's probably very soon.
    Wonder if it'll break SSL Inspector?
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

  4. #4
    Untangle Ninja jcoehoorn's Avatar
    Join Date
    Mar 2010
    Location
    York, NE
    Posts
    1,588

    Default

    Looking through a "what's new guide" for TLS 1.3, I don't see anything that would interfere. Downgrade protection is potentially concerning, but I think we'll be okay as long as we stay up to date. But it should also be noted I'm not an expert in this area. Not even close.
    Five time Microsoft ASP.Net MVP managing a Lenovo RD330 / E5-2420 / 16GB with Untangle 14.0 to protect 700Mbits for ~400 residential college students and associated staff and faculty

  5. #5
    Master Untangler
    Join Date
    May 2008
    Posts
    804

    Default

    Unless this gets forced some how, it will probably be years before it matters.

  6. #6
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    22,700

    Default

    Considering that TLS 1.0 and 1.1 just basically got tossed this year, yeah it'll be awhile.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  7. #7
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    893

    Default

    My wish/hope is that I'll continue to have the ability to "view within" with SSL Inspector for desired traffic to and from my protected domain, but somehow hinder the same ability in the tubes from others doing the same of my packets...silly TNO!
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

  8. #8
    Master Untangler f1assistance's Avatar
    Join Date
    Apr 2009
    Location
    Holly Springs, NC
    Posts
    893

    Default

    "A quick reminder on HTTPS everywhere"
    https://www.oreilly.com/ideas/a-quic...tps-everywhere
    Untangle...because nothing's worse than doing nothing!
    -------
    2, Pentium (R) Dual-Core CPU E5300 @ 2.60GHz 2599.968, 2089.96MB RAM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2