Just a quick note to let those of you who care know that our load balancer finally got bumped up to openssl 1.1.x and is now TLSv1.3 happy. For those of you who are especially paranoid, "ssl_early_data" is explicitly set to "off" in the nginx conf file, actively disabling 0-RTT, even though it's disabled by default.
That's all, carry on.
(Score: 2) by SomeGuy on Saturday November 16 2019, @12:26AM (1 child)
It appears that since this story, someone has kindly re-enabled backwards compatiblity.
(Score: 0) by Anonymous Coward on Saturday November 16 2019, @08:37PM
The SSL Labs website says that the SN server now has TLS 1.0 enabled.