Obsolete ciphers on directadmin binaries

[Chrysalis]

John, please as soon as possible do a new version of directadmin enabling modern ciphers.

Only a handful of TLS 1.0 ciphers are working, and since various browsers block DHE ciphers now, it means many modern browsers have no PFS when connecting to directadmin.

This has only been confirmed on FreeBSD 10.

 

[zEitEr]

Hello,

Check this page: https://help.directadmin.com/item.php?id=571 It states, that current binaries only allow TLSv1.2. Probably it differs for FreeBSD.

 

[Chrysalis]

Yes I have read that page, note I said there is no TLS 1.2 ciphers. Only almost obsolete TLS 1.0 ciphers. So you are just telling me I am correct.

There is no exception listed on that page for FreeBSD (only for centos 5), but FreeBSD does have support for TLS 1.2 in its included libraries.