The following bug https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=943415
was submitted in 2019 to request that TLS 1.0 and 1.1 be disabled by default, as already done for OpenSSL. But there is still no reaction from the Apache maintainers. Note also that TLS 1.0 and 1.1 were deprecated in RFC 8996 4 years ago. Shouldn't they be disabled for trixie? -- Vincent Lefèvre <vinc...@vinc17.net> - Web: <https://www.vinc17.net/> 100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/> Work: CR INRIA - computer arithmetic / Pascaline project (LIP, ENS-Lyon)