Probably not just that. 3DES is the last cipher supported by "old" clients (I'm talking Windows XP). If you remove 3DES, the TLS connection will simply fail.
You can never imagine how many people are still using WinXP, or other forgotten legacy clients/servers that only support up to TLS 1.0 and RC4/DES/3DES without realizing it.
>You can never imagine how many people are still using WinXP
XP still has 0.38% of market share (specifically Windows non-mobile platforms) according to [1], not sure about absolute numbers.
>If you remove 3DES, the TLS connection will simply fail.
Strong backwards compatibility is great, but continuing to run XP 10+ years after EOL is a personal choice and its remaining users should not expect the world to continue to accomodate them forever. I don't think it's unreasonable to deny them service in this case.
zzq1015|9 months ago
You can never imagine how many people are still using WinXP, or other forgotten legacy clients/servers that only support up to TLS 1.0 and RC4/DES/3DES without realizing it.
waste_monk|9 months ago
XP still has 0.38% of market share (specifically Windows non-mobile platforms) according to [1], not sure about absolute numbers.
>If you remove 3DES, the TLS connection will simply fail.
Strong backwards compatibility is great, but continuing to run XP 10+ years after EOL is a personal choice and its remaining users should not expect the world to continue to accomodate them forever. I don't think it's unreasonable to deny them service in this case.
[1] https://gs.statcounter.com/os-version-market-share/windows/d...
everfrustrated|9 months ago