Tomorrow, 03-18-2020, starting at 02:00 PM EET (GMT+2) for 3 hours we will be performing an infrastructure upgrade for the CDN and cache nodes.
During this maintenance window we will end support for TLS (Transport Layer Security) versions 1.0 and 1.1 for our entire infrastructure.
Will my site go down?
No. We do not expect any downtime for any website.
Why this change?
TLS 1.0 and 1.1 are out-of-date protocols that do not support modern cryptographic algorithms, and they contain security vulnerabilities that may be exploited by attackers. TLS 1.2 and up is also required for HTTP/2, which delivers significant performance improvements for your website.
Google, Microsoft, Apple, and Mozilla have all announced that their browsers will no longer support TLS 1.0 and 1.1 as of March 2020.
Will I be affected?
We do not expect this change to affect a high number of users. Our estimations are that less than 0.09% of users will be affected, most likely users with very old devices and/or browsers that have not been updated for a long time.
What should I do?
There will be no action necessary from your end, just ensure your client supports TLS 1.2 or higher, which we're sure it already does.
Industry announcements regarding TLS support:https://security.googleblog.com/2018/10/modernizing-transport-security.htmlhttps://blogs.windows.com/msedgedev/2018/10/15/modernizing-tls-edge-ie11/https://webkit.org/blog/8462/deprecation-of-legacy-tls-1-0-and-1-1-versions/https://blog.mozilla.org/security/2018/10/15/removing-old-versions-of-tls/