On Wed, Jun 20, 2018 at 9:53 AM, Tom Hughes <tom@xxxxxxxxxx> wrote: > On 20/06/18 09:46, Peter Robinson wrote: > >> There's also requirements by PCI (Payment Card Industry, not the >> interconnect tech) for sites doing financial transactions to be >> HTTP/1.1 and TLS 1.2 by June 30 too so no doubt that'll spur some >> sites forward too >> >> https://www.theregister.co.uk/2018/06/20/paypal_security_upgrade/ > > > That appears to be incorrect though - only TLS 1.1 is required > from June 30 although 1.2 is strongly encouraged. See: > > https://blog.pcisecuritystandards.org/are-you-ready-for-30-june-2018-sayin-goodbye-to-ssl-early-tls Maybe it's Paypal that's enforcing 1.2, it's purely a FYI, I don't care that much (more don't have the time to care that much because thankfully I don't currently have to deal with PCI-DSS) _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx/message/2SKLI63CUNBCMNPD4QW3KM4D3J7Q3SQA/
