Today, a few configurations updates were performed on the server in order to keep it secured and up to date. One of the changes was dropping support for TLS 1.0 – a cryptographic protocol, now considered outdated and adding support for TLSv1.3 which provides security and performance improvements. As a result, a few very old browsers and clients not supporting TLSv1.1, TLSv1.2 or TLSv1.3 will not be able to connect to the website anymore. The following is a list of such operating systems and software products, known to be affected by this update:
- Android 2.3.7
- Android 4.0.4
- Android 4.1.1
- Android 4.2.2
- Android 4.3
- Internet Explorer 6 / Windows XP
- Internet Explorer 7 / Windows Vista
- Internet Explorer 8 / Windows XP
- Internet Explorer 8-10 / Windows 7
- Internet Explorer 10 / Windows Phone 8.0
- Java 6u45
- Java 7u25
- OpenSSL 0.9.8y
- Safari 5.1.9 / OS X 10.6.8
- Safari 6.0.4 / OS X 10.8.4
If you are using a software product or an operating system listed here or an older one, you should consider updating it as the security protocols it uses are prone to vulnerabilities and are now considered outdated. A second configuration update in the next days will also drop support for TLS 1.1 as it is also considered outdated. As TLS 1.1 is not widely adopted, it will have a very limited impact on accessibility (most TLS 1.0 compatible operating systems and software were updated to support TLS 1.2).
For a more detailed list of (un)supported protocols, please refer to the following tables:
Browsers: [link]
Libraries: [link]
–
UPDATE (17.07.2019)
Support for TLSv1.1 has also been discontinued today. Both TLSv1.0 and 1.1 will be deprecated in the beginning of 2020 by Apple, Google, Mozilla and Microsoft