Re: [OT] anyone have experience getting TLS 1.2 running ?
> On 24/08/2016, at 6:14 PM, Tami Williams <[hidden email]> wrote:
> Anyone have experience getting TLS 1.2 running on Mac OS 10.8.5 (not running Mac OS server software)?
> Or getting TLS 1.2 running on any kind of Mac OS?
> Or any OS?
> My client has a Lasso 8.5 site running on Mac OS 10.8.5 but it looks like there is no way to get TLS 1.2 to run in Apache 2.2 on the Mac.
> Since TLS 1.2 is a must - any hardware/software recommendations? Must run Lasso 8.5 as well.
> Anyone gotten this to work?
I’m in the process of doing all this on OS X 10.10.5.
OS X 10.8 and 10.10 come with openssl 0.9.8zg which does not support TLS 1.2. To get a newer version of openssl I installed it via Homebrew. I also installed apache 2.4 (2.4.18) via Homebrew while I was at it.
Homebrew requires OS X 10.9 or later, but 10.8.5 can be used but some bits/formulae might not work.
Using the mod_ssl that came with the Homebrew version of apache 2.4 didn’t pass the Qualys SSL Labs test for TLS 1.2, so I downloaded the source for apache 2.4.18 and compiled mod_ssl (against the homebrew version of openssl 1.0.2h_1). This now passes the TLS1.2 test, overall score of A.
I had to manually install the Lasso Connector for apache 2.4 to get Lasso 8.5.6 working.
So it should be doable on the hardware you have, although you don’t state what it is.