freerad - new min tls setting, why no 1.3?
-
So noticed updated freerad package recently updated to allow for setting min tls version.
Now that OpenSSL 1.1.1i-freebsd, is there some reason we can not set to min 1.3?
-
@johnpoz see https://freeradius.org/release_notes/:
Note that tls_min_version/tls_max_version also support "1.3"
Since there is no standard yet for EAP with TLS 1.3, it will not work. -
Thanks - doing a bit of looking into this, and seems they are working on it ;)