Consider I have IE with ONLY TLS 1.2 enabled. TLS 1.0 and 1.1 are disabled. (And SSLv2,v3)
I have a server that only supports TLS1.2, with 1.0 and 1.1 disabled as well.
Assuming they share a common cipher, what would happen if the client requested a protocol fallback? Is that even possible? I am thinking that the clients would have the intelligence built in that says "well, I only have 1.2 enabled so I can't request a fallback because I will break myself". Is this the case?
Aucun commentaire:
Enregistrer un commentaire