Re: [mosquitto-dev] trip report from upgrading a machine

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [mosquitto-dev] trip report from upgrading a machine

From: Roger Light <roger@xxxxxxxxxx>
Date: Wed, 28 Jan 2026 00:38:16 +0000
Arc-authentication-results: i=1; mx.google.com; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:dkim-signature; bh=1h8NPSa3JprCd0KrKsT9MHOJu1PLVmmKR0QV7bHg+2w=; fh=difTzloPaB+nqda6fgdrLiEbzqwl0GD/OU4OeQ28eZ4=; b=UKdhpRbeyPbAj6Ev0qZVTAtzraaoWQnTi8GMciLrxWC5BUiQAVIOhxcygtw22MjNgt uR6ls5X1ChEhozPBxrgDn9cHjLDwQL6c++F1kDmXesDg9XrK3ph5h2o+F53r1PYVE4p6 ezl7b7sDYNYqScO0PvpyZsCJvcebxH4ddZnr4Mr2XyARc1e/yOFvJhGpKAvBEyJhSmJ9 npiA79II0uJbGfp9JIAPZwpaI7b5emPfqD46PgXEgqG28nPgSJiTrHza05t9z/tq6S9l rnkpUzfftfdvIDpHLJdXxh4rbVeMyITBJEoPz5cYs9JZnNPCn9E8q4UXLRNLHKzkCuEI Ubqw==; darn=eclipse.org
Arc-seal: i=1; a=rsa-sha256; t=1769560708; cv=none; d=google.com; s=arc-20240605; b=HEnl8bnTN1reYWJ2/HV4Kc0nzwU0qDFyb+L+0bn1Gzfp0yYtSqpTN7aQTRj6tdvyna ceXUzKxcAiz4HIvKUw0HF15zQ5ELuoYeUeeoC1uxnnf64kh/mzYvNcaXhLd7JkPyQKG2 uBbnrJoM5R2UkHS6KNd/1LZrKkvqT4HMKJo7wADeW3pNP9j/UfICojR0sDSPwjlEgD49 JSRaEDVegme2GXLGvf3q6zWwHu8CQLQhepScBoMhwR/OxVZrq6FsZcYFBCU6k9Q8ALJv QNIWwKSqmMcWmI/XNTyRzq3Ki7A0Xzjv/c40NkX44ApI1XaFW8yEie1NcxnGu3xapGro g5AA==
Delivered-to: mosquitto-dev@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/mosquitto-dev/>
List-help: <mailto:mosquitto-dev-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/mosquitto-dev>, <mailto:mosquitto-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/mosquitto-dev>, <mailto:mosquitto-dev-request@eclipse.org?subject=unsubscribe>

Hi Greg,

It seems like it got TLS 1.2 support in 2016:
https://github.com/nodemcu/nodemcu-firmware/commit/bdd54648f4314bd5dad0faeb353b7265c41c0abd#diff-76ed074a9305c04054cdebb9e9aad2d818052b07091de1f20cad0bbac34ffb52

Cheers,

Roger

On Wed, 28 Jan 2026 at 00:23, Greg Troxel <gdt@xxxxxxxxxx> wrote:
>
> Roger Light via mosquitto-dev <mosquitto-dev@xxxxxxxxxxx> writes:
>
> > There's a big difference between "unencrypted is insecure" and "TLS
> > 1.1 is insecure" - there's no expectation for unencrypted to be
> > secure.
>
> True, and having it off by default, and even throwing a Big Scary
> Warning seems totally fine.  My real point is that I think there are
> people that want to enable it because they have some deployed sender.
>
> > I'll see about adding 1.1 support back in, although I would say that
> > TLS 1.2 existed before the mosquitto project existed!
>
> Thanks!  I believe you, but to me the question is whether anyone using
> mosquitto has clients that only do 1.1, that they can't upgrade.  And
> then whether we can comfortably say to them "we don't know anything
> about your world and your constraints, security and operational, but
> your desire to turn on 1.1 is wrong; you're just going to lose and we
> think that's fine".  I know what sounds pointed, but that's how I see
> it.
>
> I will try to figure out nodemcu's status more; perhaps it's 1.2 and I'm
> confused -- but my config file has a note that says 1.1.
>

Follow-Ups:
- Re: [mosquitto-dev] trip report from upgrading a machine
  - From: Greg Troxel

References:
- [mosquitto-dev] trip report from upgrading a machine
  - From: Greg Troxel
- Re: [mosquitto-dev] trip report from upgrading a machine
  - From: Roger Light
- Re: [mosquitto-dev] trip report from upgrading a machine
  - From: Greg Troxel

Prev by Date: Re: [mosquitto-dev] trip report from upgrading a machine
Next by Date: Re: [mosquitto-dev] trip report from upgrading a machine
Previous by thread: Re: [mosquitto-dev] trip report from upgrading a machine
Next by thread: Re: [mosquitto-dev] trip report from upgrading a machine
Index(es):
- Date
- Thread

Breadcrumbs