>
> > elpa.gnu.org is supporting insecure TLS 1.0 and TLS 1.1, and does not
> > support Forward Secrecy on every device, so It got a B grade on Qualys
> > Labs' SSL Test (
> >
> https://www.ssllabs.com/ssltest/analyze.html?d=elpa.gnu.org&s=209.51.188.89&latest
> ).
> > It could have a bad effect on security and privacy for emacs users. Would
>

> you apply only TLS 1.3 on elpa.gnu.org?
>
*only* TLS 1.3 would be a bit harsh, I think.
>
If so,  At least we should deprecate TLS 1.1 and TLS 1.0 on elpa.gnu.org

2020년 11월 26일 (목) 오전 2:04, Robert Pluim <rpluim@gmail.com>님이 작성:

> 김민우 <kmwyard@gmail.com> writes:
>
> > elpa.gnu.org is supporting insecure TLS 1.0 and TLS 1.1, and does not
> > support Forward Secrecy on every device, so It got a B grade on Qualys
> > Labs' SSL Test (
> >
> https://www.ssllabs.com/ssltest/analyze.html?d=elpa.gnu.org&s=209.51.188.89&latest
> ).
> > It could have a bad effect on security and privacy for emacs users. Would
> > you apply only TLS 1.3 on elpa.gnu.org?
>
> *only* TLS 1.3 would be a bit harsh, I think.
>
> Robert
>