Disabling TLS 1.0 and 1.1
Question asked by Scott Forsythe - 7/17/2020 at 1:32 PM
Unanswered
We would like to disable TLS 1.0 and 1.1 on our SmarterMail servers but we're concerned that this will "break" some of our customers that are running old software. We would like to identify these customers before we disable TLS 1.0 and 1.1.

Has anyone had a similar situation? Is there an easy way to find identify customers that will break before hand?

3 Replies

Reply to Thread
2
echoDreamz Replied
We've had tons of issues with disabling older TLS versions. Including breaking clients as well as incoming mail server connections that dont support higher TLS versions, which then turns into support tickets of users complaining they are not receiving x email.
1
Sébastien Riccio Replied
We also considered disabling tls <1.2 but after some analysis there is still too much clients and even servers that aren't tls 1.2 enabled... It's a bit too early to disable the support for it.

Sébastien Riccio
System & Network Admin

1
Scott Forsythe Replied
Appreciate the feedback!

Reply to Thread