KeePass / Feature Requests / #2076 Support TLS 1.1 and 1.2

#2076 Support TLS 1.1 and 1.2

Milestone: KeePass_2.x

Status: closed

Owner: nobody

Labels: None

Priority: 5

Updated: 2016-01-10

Created: 2016-01-10

Creator: Louis Matthijssen

Private: No

Currently, only SSL 3 and TLS 1.0 are supported for WebDAV. I would like support for TLS 1.1 and 1.2, because SSL 3 and TLS 1.0 have known vulnerabilities.

I've succeeded to enable this, by setting the target framework for all projects to .NET 4.5 and adding the following line to the PrepareWebAccess method:

ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls12 | SecurityProtocolType.Tls11 | SecurityProtocolType.Tls;

Discussion

Dominik Reichl - 2016-01-10

Thanks for the suggestion. KeePass 2.32 will set ServicePointManager.SecurityProtocol to support SSL 3, TLS 1.0, TLS 1.1 and TLS 1.2, when running under .NET 4.5. When running under an earlier .NET version, KeePass will not try to enable TLS 1.1 and TLS 1.2 (as they're not supported by the earlier framework anyway).

Here's the latest development snapshot for testing:
http://keepass.info/filepool/KeePass_160110.zip

Moving to closed feature requests.

Best regards,
Dominik

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Dominik Reichl - 2016-01-10

status: open --> closed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Dominik Reichl - 2016-01-10

Ticket moved from /p/keepass/bugs/1464/

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Support TLS 1.1 and 1.2

A lightweight and easy-to-use password manager

Group

Searches

Help

#2076 Support TLS 1.1 and 1.2

Discussion