Raise TLS min to v1.1 (or v1.2)

[Thorin-Oakenpants]

snip

[earthlng]

Yes, I have disabled TLS1.0 ever since I created my user.js and nowadays I very rarely encounter pages that break. I'd say lets disable both 1.0 and 1.1 while we're at it.
One of the sites that didn't used to work was the securityartwork.es link in 1200's description but they seem to have recently updated to TLS1.2 as well.

Btw your linked article hides all the content by default. Fuck that! - let's replace the link with an archived version: https://archive.is/hY2Mm (created today)

[Atavic]

EDIT: When a site uses a SSL or TLS version that's inactive in the browser:
Error code: SSL_ERROR_NO_CYPHER_OVERLAP

[2glops]

TLS 1.2 min seems good.
Only very few sites should break.

[earthlng]

we also have one in 2668, which I will edit as well to use the same number

👍

1202 nits:

• I'd make the WARNING a NOTE and add a [WARNING] If you get an "SSL_ERROR_NO_CYPHER_OVERLAP" error temporarily set a lower value for 'security.tls.version.min' in about:config or something like that.
• simply replace link [2] because fuck them and their shenanigans. The original link can still be seen at the top of the archived page
• I also don't like version.max=4 because 0-RTT still sucks in TLS1.3 but that's just me

[earthlng]

while you pushed and pushed for it (and got salty!)

I always said "IF/WHEN the change lands in stable"! I still feel that way btw. So far it's beta-only.
I also don't remember getting salty about it