Release Notes and Announcements

  • 1.  EOL for TLS 1.0

    Posted 09-18-2017 15:12
    Edited by Kristina King 09-18-2017 15:16

    In the interest of furthering security on our hosted servers, Jama has disabled the use of TLS 1.0 with the release of 8.20. Users must have TLS 1.1 or 1.2 enabled on their browsers in order to use Jama. With 8.20.1, on-premises customers will be able to disable TLS 1.0 via Replicated.

    Note that all of Jama's supported browsers automatically default to TLS 1.1+, so no action should be required.

    If your browser does have TLS 1.0 enabled, you may see one of the following errors:

    IE 11
    cURL with TLS 1.0
    curl -v --tlsv1.0

    * Connected to ( port 443 (#0)
    * found 173 certificates in /etc/ssl/certs/ca-certificates.crt
    * found 697 certificates in /etc/ssl/certs
    * ALPN, offering http/1.1
    * gnutls_handshake() failed: Error in the pull function.
    * Closing connection 0 curl: (35) gnutls_handshake() failed: Error in the pull function.

    If you encounter one of these, you will need to change your TLS setting, or, if possible, update your browser to the most recent supported version.

    Kristina King
    Jama Software