~cadence/bliz-devel

Use only TLS 1.2 v1 PROPOSED

Paper
Paper: 1
 Use only TLS 1.2

 1 files changed, 1 insertions(+), 1 deletions(-)
Export patchset (mbox)
How do I use this?

Copy & paste the following snippet into your terminal to import this patchset into git:

curl -s https://lists.sr.ht/~cadence/bliz-devel/patches/16315/mbox | git am -3
Learn more about email & git
View this thread in the archives

[PATCH] Use only TLS 1.2 Export this patch

Paper
---
 main.fish | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/main.fish b/main.fish
index 00273ab..97be7e7 100755
--- a/main.fish
+++ b/main.fish
@@ -3,4 +3,4 @@
source src/config.fish
source src/includes.fish

socat openssl-listen:1965,cert=certs/cert.pem,key=certs/key.pem,verify=0,reuseaddr,fork exec:"fish src/cgi.fish"
socat openssl-listen:1965,cert=certs/cert.pem,key=certs/key.pem,method=TLS1.2,verify=0,reuseaddr,fork exec:"fish src/cgi.fish"
-- 
2.30.0
The spec:
> Servers MUST use TLS version 1.2 or higher and SHOULD use TLS
> version 1.3 or higher. TLS 1.2 is reluctantly permitted for now to
> avoid drastically reducing the range of available implementation
> libraries. Hopefully TLS 1.3 or higher can be specced in the near
> future. Clients who wish to be "ahead of the curve MAY refuse to
> connect to servers using TLS version 1.2 or lower.
Does this option also allow connections through TLS 1.3 (if socat even
supports them at all) ?