Defender 1: This appliance is running an ancient AF version, how is it not a smoking ruin at this point?

tomsellers@infosec.exchange

Defender 2: Well, it turns out that all of the attacker scanning tools use libraries that have disabled TLS before 1.0 and this appliance only supports SSL v3 sooo....

OpenSSL 1.1.1 sets the default min to TLS 1.0
Python 2.7 / 3.6 set the default min to TLS 1.0 but depend on the underlying crypto lib.
Go default min prior to 1.18 was TLS 1.0
curl default min was TLS 1.0 from curl 7.39.0 to 8.15.x
wget uses underlying lib

#Security #TLS

CIRCLE WITH A DOT

Defender 1: This appliance is running an ancient AF version, how is it not a smoking ruin at this point?