Y
Hacker News
new
|
ask
|
show
|
jobs
by
yuhong
4204 days ago
What is frustrating is how many such servers have TLS 1.3 intolerance (even PayPal), and often the same servers are also affected by this bug. I wonder what TLS implementation is this.
1 comments
feld
4204 days ago
TLS 1.3 isn't finished yet...
link
yuhong
4204 days ago
I know, the goal is to prepare.
link
feld
4204 days ago
I'm not sure what you mean then by servers having TLS 1.3 intolerance.
link
yuhong
4203 days ago
It does not respond properly to clients trying to negotiate TLS 1.3. It should return a ServerHello showing the supported TLS 1.2 version.
link
feld
4201 days ago
I wasn't aware there was a TLS 1.3 PoC that people could use for testing.
link
yuhong
4200 days ago
It is as simple as setting the version in the ClientHello message.
link