curl / Mailing Lists / curl-library / Single Mail


on the topic of browsers deprecating TLS 1.0/1.1

From: Daniel Stenberg via curl-library <>
Date: Wed, 17 Oct 2018 09:07:21 +0200 (CEST)


The four major browsers (Firefox, Chrome, Edge and Safari) have all
coordinated the deprecation of TLS 1.0 and 1.1 (see [1] for technial details).
To be removed in March 2020, so still quite a long time away I think.

I don't think this is a reason enough for us to act in any particular way
short-term. We can possibly consider also bumping our lowest acceptable
default version in the future, but I rather just wait this transition out a
bit first to see where it goes.

curl is usually rather conservative, but we also need to offer "safe" and
"reasonable" defaults to users.

[1] =

Received on 2018-10-17