Hello @ciao70,
There's no time frame to report on when you might see support for TLS 1.3 in cPanel & WHM. OpenSSL 1.1.1 or higher will first need to be shipped with CentOS, and Apache will need to support it through mod_ssl. Both of these steps would need to happen before it was supported with cPanel & WHM. I encourage you to open a feature request to track the progress:
Submit A Feature Request
Thanks!
There's no time frame to report on when you might see support for TLS 1.3 in cPanel & WHM. OpenSSL 1.1.1 or higher will first need to be shipped with CentOS, and Apache will need to support it through mod_ssl. Both of these steps would need to happen before it was supported with cPanel & WHM. I encourage you to open a feature request to track the progress:
Submit A Feature Request
Thanks!
Hello cPanelMichael
Open Feature Request
https://features.cpanel.net/topic/add-support-for-tls-1-3
(On Moderation)
Thanks
Open Feature Request
https://features.cpanel.net/topic/add-support-for-tls-1-3
(On Moderation)
Thanks
Hello,
mod_ssl incoming support on Apache 2.4.36 for TLS 1.3
[Apache-SVN] Contents of /httpd/httpd/branches/2.4.x/CHANGES
mod_ssl: Add support for OpenSSL 1.1.1 and TLSv1.3. TLSv1.3 has behavioural changes compared to v1.2 and earlier; client and enhanced for TLSv1.3 ciphers, but applies at vhost level only.
Now released Apache 2.4.35
Welcome! - The Apache HTTP Server Project
mod_ssl incoming support on Apache 2.4.36 for TLS 1.3
[Apache-SVN] Contents of /httpd/httpd/branches/2.4.x/CHANGES
mod_ssl: Add support for OpenSSL 1.1.1 and TLSv1.3. TLSv1.3 has behavioural changes compared to v1.2 and earlier; client and enhanced for TLSv1.3 ciphers, but applies at vhost level only.
Now released Apache 2.4.35
Welcome! - The Apache HTTP Server Project
Last edited:
Hello,
Released Apache 2.4.37
Welcome! - The Apache HTTP Server Project
http://www.apache.org/dist/httpd/CHANGES_2.4.37
"
mod_ssl: Add support for OpenSSL 1.1.1 and TLSv1.3. TLSv1.3 has
behavioural changes compared to v1.2 and earlier; client and
configuration changes should be expected. SSLCipherSuite is
enhanced for TLSv1.3 ciphers, but applies at vhost level only."
Vote
Add Support for TLS 1.3
Released Apache 2.4.37
Welcome! - The Apache HTTP Server Project
http://www.apache.org/dist/httpd/CHANGES_2.4.37
"
mod_ssl: Add support for OpenSSL 1.1.1 and TLSv1.3. TLSv1.3 has
behavioural changes compared to v1.2 and earlier; client and
configuration changes should be expected. SSLCipherSuite is
enhanced for TLSv1.3 ciphers, but applies at vhost level only."
Vote
Add Support for TLS 1.3
- ea-apache2
- EA-7941 - Update ea-apache24 to 2.4.37
EasyApache 4 Change Log 2018 - EasyApache 4 - cPanel Documentation
ETA for Openssl 1.1.1?
Hello @ciao70,
There's no specific time frame to offer at this time. The development team responsible for EasyApache took some time to evaluate adding support for OpenSSL 1.1.1 and determined it's addition will require significant testing and modifications to existing RPMs. It's still planned, but it's not something that can be integrated immediately. We'll update the feature request as soon as new information is available:
Add Support for TLS 1.3
Thank you.
There's no specific time frame to offer at this time. The development team responsible for EasyApache took some time to evaluate adding support for OpenSSL 1.1.1 and determined it's addition will require significant testing and modifications to existing RPMs. It's still planned, but it's not something that can be integrated immediately. We'll update the feature request as soon as new information is available:
Add Support for TLS 1.3
Thank you.
Hello,
If TLS 1.3 is an immediate requirement, note that LiteSpeed offers support for this in their cPanel plugin:
LiteSpeed Web Server Version 5.3 New Features ⋆ LiteSpeed Blog
Thank you.
If TLS 1.3 is an immediate requirement, note that LiteSpeed offers support for this in their cPanel plugin:
LiteSpeed Web Server Version 5.3 New Features ⋆ LiteSpeed Blog
Thank you.
Hello
Released Apache 2.4.39 (Important Security Fix)
Pending Publication - [EA-8307] Update ea-apache24 to 2.4.39 for CVE-2019-0211
http://www.apache.org/dist/httpd/CHANGES_2.4.39
Apache HTTP Server version 2.4.39 or newer is required in order to operate a TLS 1.3 web server with OpenSSL 1.1.1.
Welcome! - The Apache HTTP Server Project
Add Support for TLS 1.3 Vote
@cPanelMichael
Eta for OpenSSL 1.1.1?
Released Apache 2.4.39 (Important Security Fix)
Pending Publication - [EA-8307] Update ea-apache24 to 2.4.39 for CVE-2019-0211
http://www.apache.org/dist/httpd/CHANGES_2.4.39
Apache HTTP Server version 2.4.39 or newer is required in order to operate a TLS 1.3 web server with OpenSSL 1.1.1.
Welcome! - The Apache HTTP Server Project
Add Support for TLS 1.3 Vote
@cPanelMichael
Eta for OpenSSL 1.1.1?
Last edited:
Hello @ciao70,
There's no update to share at this time, but I encourage you to continue monitoring the below feature request as that's where we'll offer updates:
Add Support for TLS 1.3
You may also want to consider adding your feedback as a comment on the feature request page.
Thank you.
RadWebHosting
Well-Known Member
GitHub - CpanelInc/ea-openssl11
Contribute to CpanelInc/ea-openssl11 development by creating an account on GitHub.
github.com
Hello,
documentation.cpanel.net
Upgrade auto from openssl 1.0.2 to 1.1.1?
TLS 1.3?
Thanks
EasyApache 4 Change Log 2019 - EasyApache 4 - cPanel Documentation
- ea-openssl11
- ZC-5606: Create ea-openssl11 package for openssl v1.1.1.
Upgrade auto from openssl 1.0.2 to 1.1.1?
TLS 1.3?
Thanks
