To maintain a high-security level, OpenSRS is deprecating the use of the Transport Layer Security (TLS) protocol version 1.0 and TLS 1.1 system-wide. TLS 1.0 is a security protocol that was first defined in 1999 for establishing encryption channels over computer networks.
- Who this change affects
- Why these changes are taking place
- When changes are being implemented
- Ensuring resellers can meet the new requirements
Who this change affects
This change affects all resellers connecting to OpenSRS via port 443 and port 55443, currently using TLS 1.0 or 1.1 for their encryption.
Why these changes are taking place
To maintain the security level that resellers expect from our service, we will no longer permit OpenSRS connections via TLS 1.0 or 1.1. We will only accept TLS 1.2 or above.
When changes are being implemented
To help resellers prepare for changes they may need to make, we are using separate dates for the production and test environments.
| Environment | Server address | Date |
| Test Environment | horizon.opensrs.net |
Thursday, Feb 18, 2021 |
| Production environment | rr-n1-tor.opensrs.net | Tuesday, Mar 16, 2021 |
Ensuring resellers can meet the new requirements
Please ensure that the web browser being used to connect to the OpenSRS control panel is an updated version of a supported browser.
Resellers will need to work with their developers to ensure their API connections use the acceptable versions of TLS. Our domains API guide provides troubleshooting steps to verify you can connect to our server. Verification of a valid connection to the API host/port will return the SSL-session protocol/version.
0 Comments