You're right. Thanks for pointing that out. Adoption takes time.
https://luxsci.com/blog/ssl-versus-tls- ... rence.html
What about TLS v1.3?
TLS v1.3 is the latest and greatest version of TLS. It became an Internet standard on March 25th, 2018. According to NIST, organizations should make plans to support TLS v1.3 by January 1st, 2020 or sooner.
That doesn't mean it can't be added right now. Enabling TLSv1.2 with TLSv1.3 works great using ciphers that are compatible for just those two standards. I have nothing but "A+
" analysis reviews on both https://securityheaders.com/
for my site. It is also fully compatible with almost everything out there, with the exception being "Chrome 49 / XP SP3
". For now though, using TLS 1.2 is still absolutely necessary until PHP adopts TLS 1.3. Running TLS 1.3 by itself without TLS 1.2 doesn't work at the moment.
I'm using this on my website (nginx.org setup) with no issues:
Code: Select all
ssl_protocols TLSv1.2 TLSv1.3;
To break it down:
https://www.unrealircd.org/docs/SSL_Cip ... _protocols