Release Notes and Announcements

EOL for TLS 1.0

  • 1.  EOL for TLS 1.0

    Posted 09-18-2017 18:12
    Edited by Kristina King 09-18-2017 18:16

    In the interest of furthering security on our hosted servers, Jama has disabled the use of TLS 1.0 with the release of 8.20. Users must have TLS 1.1 or 1.2 enabled on their browsers in order to use Jama. With 8.20.1, on-premises customers will be able to disable TLS 1.0 via Replicated.

    Note that all of Jama's supported browsers automatically default to TLS 1.1+, so no action should be required.

    If your browser does have TLS 1.0 enabled, you may see one of the following errors:

    IE 11
    Chrome
    Firefox
    Safari
    cURL with TLS 1.0
    curl -v --tlsv1.0 https://qaapptomcatpt.jamasoftware.net/login.req

        *Trying 34.212.222.243...
    
    * Connected to qaapptomcatpt.jamasoftware.net (34.212.222.243) port 443 (#0)
    
    * found 173 certificates in /etc/ssl/certs/ca-certificates.crt
    
    * found 697 certificates in /etc/ssl/certs
    
    * ALPN, offering http/1.1
    
    * gnutls_handshake() failed: Error in the pull function.
    
    * Closing connection 0 curl: (35) gnutls_handshake() failed: Error in the pull function.

    If you encounter one of these, you will need to change your TLS setting, or, if possible, update your browser to the most recent supported version.



    ------------------------------
    Kristina King
    Jama Software
    ------------------------------