TLS 1.3 is not happening, because shitty vendors https://www.ietf.org/mail-archive/web/tls/current/msg24517.html …
-
-
wrong link? ... seems unrelated
-
wait, this change has happened. tls 1.3 is using a new version negotiation mechanism, these middlebox issues are of a different kind.
-
this, got added in draft 16. this is what makes this extra frustrating: people have tried to workaround such issues, but it failed.pic.twitter.com/iykjP7dn1w
-
The problem was that the protocol version change didn't go far enough. Middleboxes are also failing on the serverhello's protocol version.
-
what are the middleboxes trying to do? A MiTM should downgrade...
-
Exactly. They are failing to implement that correctly and instead disconnecting. Some passive middleboxes are just disconnecting on 1.3, too
-
You'd think they'd at least try to make a working product :(
- 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.