Deprecating TLSv1 support

I followed the instructions on https://bitbucket.org/blog/deprecating-tlsv1-tlsv1-1-2018-12-01 to see if my git version will be compatible

It says I should see "SSL connection using TLSv1.2"

But I see is "SSL connection using TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256"

I just upgraded git from 1.83.1 to 2.16.5 and it has same message.

1 answer

1 accepted

0 votes

Answer accepted

What version of curl and libcurl? (You should be able to find both with `curl --version`.)

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

curl 7.29.0 (x86_64-redhat-linux-gnu) libcurl/7.29.0 NSS/3.34 zlib/1.2.7 libidn/1.28 libssh2/1.4.3

Protocols: dict file ftp ftps gopher http https imap imaps ldap ldaps pop3 pop3s rtsp scp sftp smtp smtps telnet tftp

Features: AsynchDNS GSS-Negotiate IDN IPv6 Largefile NTLM NTLM_WB SSL libz unix-sockets

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

You should be OK. Curl 7.29.0 supports TLSv1.2, and NSS 3.34 provides plenty of modern algorithms. The "GCM_SHA256" part of your cipher list also suggests TLSv1.2, since both of those algorithms are not supported in previous versions of TLS.

That said, your curl version is pretty old there - 7.29.0 was released in February 2013 - so it may be worthwhile looking into an update.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Like • like this

Thanks.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Forums

Product Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Deprecating TLSv1 support

1 answer

1 accepted

Suggest an answer

Was this helpful?

Thanks!

TAGS

Atlassian Community Events