Details
-
Bug
-
Resolution: Fixed
-
Major
-
7.6.0
-
Untriaged
-
0
-
Unknown
Description
We should entirely remove the ability to use TLS 1.0 and 1.1, which are already deprecated both by the standards bodies and in Couchbase Server as they are not considered secure.
tlsMinVersion is already defaulting to TLS 1.2, the REST API should only allow for tls1.2 or tls1.3 as the values
Windows will soon remove TLS 1.0 and 1.1 at an Operating System level https://techcommunity.microsoft.com/t5/windows-it-pro-blog/tls-1-0-and-tls-1-1-soon-to-be-disabled-in-windows/ba-p/3887947