SSL and TLS1 are no longer secure, per the PCI compliance council.
What does this mean for dev2host customers?
In short, at the server level we have disabled TLS1. When you connect to our servers you are connecting securely (https://), also your email program should be connecting securely. All browsers and email programs that only support TLS1 should be upgraded to use the secure connection methods. A good example would be an older version of Microsoft Outlook (2007 or 2010) or an older Mac Mail Program. It has been noted that older versions cannot connect and would need upgrading. This is because Microsoft or the software manufacturer did not upgrade their programs.
What can I do so I can use my old out of date program again?
1) The best option is to upgrade your system so its secure. If you are using an older version of Outlook or Mac mail and you don't want to pay for the upgrade the Mozilla Thunderbird is a very good free email program that is always kept up to date. Download here:
https://www.mozilla.org/en-US/thunderbird/
2) If you are using an old email program and you want to carry on using it insecurely, then you can use insecure ports to connect. For example 110 and 26 for a POP3. These ports will be available for another year or so.
In addition to the above mentioned TLS 1 changes, you should always connect your programs using TLS rather than SSL as SSL is now considered an insecure connection method.
You might have heard of the Poodle attack where your info can be compromised due to poor encryption methods like we are discussing here. For more details read here: https://www.us-cert.gov/ncas/alerts/TA14-290A
Our goal at dev2host is to make our customers aware of important security risks, especially where private information can be compromised due to insecure protocols as mentioned here.
