|
|
|
|
View Poll Results: TLSv1.0 Support
|
|
I would not be affected by dropping TLS 1.0 Support
|
 
|
6 |
66.67% |
|
I would be affected by dropping TLS 1.0 Support
|
 
|
0 |
0% |
|
PCI Compliance is worth breaking things
|
 
|
0 |
0% |
|
What the heck is TLS 1.0
|
 
|
3 |
33.33% |
09-22-2016, 09:12 PM
|
Postid: 185407
|
|
Site Owner
Join Date: Apr 2007
Posts: 26
|
Re: PCI Compliance - TLSv1.0 Encryption Support
Does anyone know of any compliant iOS mail apps? From what I'm reading, the stock email client in MacOS Sierra supports the newer protocol but iOS 10 does not. It seems we're on our own with this one.
Thoughts?
*edit*
Looks like Outlook for iOS may work. It only allows IMAP but seems to require TSL 1.1 at minimum.
|
|
|
09-22-2016, 09:19 PM
|
Postid: 185408
|
|
Have you hugged a tiger today?
Forum Notability:
1363 pts: A True Crowd-pleaser!
[ Post Feedback]
Join Date: Mar 2000
Location: Third Sol Planet Posts: Far too many. Oh ok -
Posts: 2,887
|
Re: PCI Compliance - TLSv1.0 Encryption Support
Quote:
Originally Posted by Terra
|
Note that Outlook Win has separate SSL and TLS drop-down options for SMTP and IMAP, however POP only has an SSL checkbox.
Terra - that was a rasberry in the scan two-step box
|
|
|
09-22-2016, 09:23 PM
|
Postid: 185409
|
|
Systems Administrator
Join Date: Aug 2001
Location: Orlando, FL
Posts: 2,986
|
Re: PCI Compliance - TLSv1.0 Encryption Support
Abrams,
We are very confused by your problem. We looked back in the logs from yesterday and you were using TLS1.0 to send email. That was what we turned off and have since turned back on. However, now your connections seem to be failing on SSL which has been disabled for a long time (I even looked at the server backups from last night to make sure that your server wasn't somehow different than the others).
Maybe your client got confused by the legitimate error and needs to be reset in some way. None of us has any experience with that client so I am not sure what options it has to offer.
__________________
Kevin
|
|
|
09-22-2016, 09:39 PM
|
Postid: 185411
|
|
Have you hugged a tiger today?
Forum Notability:
1363 pts: A True Crowd-pleaser!
[ Post Feedback]
Join Date: Mar 2000
Location: Third Sol Planet Posts: Far too many. Oh ok -
Posts: 2,887
|
Re: PCI Compliance - TLSv1.0 Encryption Support
Terra - is it possible to setup a non-TLS1.0 mail server for us to test mail apps against? It doesn't have to really send out messages, just for testing connections.
|
|
|
09-22-2016, 09:40 PM
|
Postid: 185412
|
|
Site Owner
Join Date: Dec 2001
Posts: 12
|
Re: PCI Compliance - TLSv1.0 Encryption Support
Miracles happen. I downloaded thunderbird and installed. When I opened, it contained all my Eudora OSE email complete with folders - only with a really ugly interface. Test messages came in and were filtered properly. Someone must have built this into the new version. Why they don't say this is beyond me.
Since you/fq changed settings, I am hoping this doesn't mean this will crash also in a week?
Kevin, none of the settings were working, so I probably left it on the wrong(?) one. Who knows, they are all wrong, so...
I checked the raw configuration editor in Thunderbird and found the settings to be correct.
Outta here.
Thanks.
2.5 hrs later....
|
|
|
09-22-2016, 09:40 PM
|
Postid: 185413
|
|
Systems Administrator
Join Date: Aug 2001
Location: Orlando, FL
Posts: 2,986
|
Re: PCI Compliance - TLSv1.0 Encryption Support
If anyone is willing to complain to their hardware/OS/application vendors about this please feel free to remind them that TLS1.1 came out in 2006 and was replaced by TLS1.2 (still the current standard) in 2008.
The credit card processing industry is only asking them to adopt technology that has been obsolete since George W Bush was the President.
__________________
Kevin
|
|
|
09-22-2016, 09:44 PM
|
Postid: 185414
|
|
Have you hugged a tiger today?
Forum Notability:
1363 pts: A True Crowd-pleaser!
[ Post Feedback]
Join Date: Mar 2000
Location: Third Sol Planet Posts: Far too many. Oh ok -
Posts: 2,887
|
Re: PCI Compliance - TLSv1.0 Encryption Support
Kevin - you saying the tech has been Trump'd?
|
|
|
09-22-2016, 09:46 PM
|
Postid: 185415
|
|
Systems Administrator
Join Date: Aug 2001
Location: Orlando, FL
Posts: 2,986
|
Re: PCI Compliance - TLSv1.0 Encryption Support
Quote:
Originally Posted by hobbes
Kevin - you saying the tech has been Trump'd?
|
lol, I wasn't trying to get political the election was just the biggest thing I could think of when remembering 2008 
__________________
Kevin
|
|
|
09-22-2016, 09:50 PM
|
Postid: 185416
|
|
Site Owner
Join Date: Apr 2007
Posts: 26
|
Re: PCI Compliance - TLSv1.0 Encryption Support
Hey Terra,
Yeah, it's a mess and I certainly don't envy your situation. I'm certainly not going to try and defend Apple. They should be on the ball, especially with all the touting they do regarding security. I know FQ is trying to do the right thing here. Frankly when we move to our own hosted shop next year we'll appreciate the TLS update.
Unfortunately the situation can't excuse the fundamentally massive user base on iOS. Any rabbit you can pull from a hat would be greatly appreciated. Removing SSL or jumping to a 3rd party email app both feel like truly terrible options.
|
|
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 visitors)
|
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -4. The time now is 12:26 AM.
|
| |
|
|
|