On 3/24/23 09:20, Óscar García Amor wrote:
PS: I recommend the intermediate level which gives a very good level of
security with a good backward compatibility.
That is a good choice in general.
If you know your web clients are reasonably 'modern' then the modern
setting is a great choice as well.
I use the modern setting. I am happy to not worry about clients which
are 5 or more years old - they should update :)
Side issue - sslabs still penalizes 1.3 only web servers for not having
fallback to older protocols. I take this more about compatibility with
older clients and not about security - perhaps obviously so.
gene
