See this Comm Center thread by Tonis Enmae. The SSL v3 in the Dart engine should be TLS. Though this is a "low value" service it should still eventually be upgraded. I will file a ticket with Dart on this.

 

  
SVN Comment
 
 

  
Author
  
rbdenny
 
 

  
Repository
  
svn+ssh://rbdenny@a2_svn_dc3/home/rbdenny/svn/astro/acp
 
 

  
SVN Revision
  
1244
 
 

  
Affected files
  
/trunk/ACP Help/ssl_security.htm (Modified)
/trunk/frmPrefs.frm (Modified)

 
 

  
Check-in comment
  
Change words on ACP Preferences to TLS, and pick up some stray  uses of SSL in the docs. 
GEM:1718

 

REOPENED



Change wording in UI and help to TLS, noting that SSL is dead.

 

  
SVN Comment
 
 

  
Author
  
rbdenny
 
 

  
Repository
  
svn+ssh://rbdenny@a2_svn_dc3/home/rbdenny/svn/astro/acp
 
 

  
SVN Revision
  
1241
 
 

  
Affected files
  
/trunk/ACP Help/images/TlsCheck.jpg (Added)
/trunk/ACP Help/relnotes.htm (Modified)
/trunk/ACP Help/ssl_security.htm (Modified)
/trunk/frmWebServer.frm (Modified)

 
 

  
Check-in comment
  
Restrict HTTPS to TLS 1.1 only, no earlier versions.
GEM:1718

 

BOOYAH! I got a response from Dart with an update which allows me to force TLS 1.2. This results in the CDN-77 Checker giving a "moderate" rating (it's an advertising site for their TLS 1.3 capable library) showing that TLS 1.2 is supported and none of the older ones!! This is great as no longer are the browsers reporting "weak encryption"!!!



They say TLS 1.3 is coming.

Submitted another ticket to Dart.

Bump for 8.3, Chrome and FF are showing Not Secure for weak encryption now.