On 24/08/2021 00:06, Chris Adams wrote:
Missing #4 is what makes a lot of this not as useful. I understand the effort that has gone into this and appreciate stepping up security, but... what matters as a user is "can I get to this site in Firefox", "does this VPN work"
It's Cisco's problem if their proprietary software doesn't support modern cryptography.
TLS 1.0, 1.1 and MD5/SHA1 are very insecure and must be disabled to avoid crypto-downgrade vulnerabilities.
Even in Firefox on Windows 10, TLS 1.0 and 1.1 are disabled by default. -- Sincerely, Vitaly Zaitsev (vitaly@xxxxxxxxxxxxxx) _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
