April 14, 2021

SpywareNews.com

Dedicated Forum to help removing adware, malware, spyware, ransomware, trojans, viruses and more!

Security – Remove all outdated TLS version support on Network

SANS ISC shares excellent awareness to remove all outdated & non-secure versions of TLS at every security endpoint — whether client or server.

Old TLS versions – gone, but not forgotten… well, not really “gone” either (sans.edu)

With the recent official deprecation of TLS 1.0 and TLS 1.1 by RFC 8996, a step, which has long been in preparation and which was preceded by many recommendations to discontinue the use of both protocols (as well as by the removal of support for them from all mainstream web browsers), one might assume that the use of old TLS versions on the internet would have significantly decreased over the last few months. This has however not been the case.

According to Shodan, at the time of writing, TLS 1.0 and TLS 1.1 are still supported by over 50% of web servers on the internet (50.15% and 50.08% respectively). We’ll leave aside the potentially much more problematic 7.2% of web servers that still support SSL 3.0 and 1.6% of servers that support SSL 2.0