This is a migrated thread and some comments may be shown as answers.

Can I block < TLS 1.2

5 Answers 582 Views
Fiddler Classic
This is a migrated thread and some comments may be shown as answers.
Kevin
Top achievements
Rank 1
Kevin asked on 29 Jul 2018, 12:52 PM

Is it possible for me to block a CONNECT session that is using TLS 1.1 or TLS 1.0?

 

I see that I can script 

if (!oSession.HTTPMethodIs("CONNECT")) 

}

but I'm not sure what to do to determine TLS version inside the if clause.

5 Answers, 1 is accepted

Sort by
0
Alexander
Telerik team
answered on 30 Jul 2018, 05:40 AM
Hello,

Can you elaborate some more on what is your case? Do you need this for test purposes or it is a more of a permanent configuration? I need this information in order to find the right solution for your case, since there is no way for you to check what is the protocol version.

Regards,
Alexander
Progress Telerik
Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
0
Kevin
Top achievements
Rank 1
answered on 30 Jul 2018, 09:42 AM

This is purely for test purposes.

 

Thanks - kevin

0
Alexander
Telerik team
answered on 02 Aug 2018, 04:25 AM
Hi,

The easiest approach for test purposes would be to just configure Fiddler to not accept TLS 1.0 and TLS 1.1 and to accept only TLS 1.2. This can be done from Tools -> Options -> HTTPS -> Protocols and leave only tls1.2. Would this solution suffice your needs?

Regards,
Alexander
Progress Telerik
Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
0
Kevin
Top achievements
Rank 1
answered on 02 Aug 2018, 10:44 AM
I tried that before but could not get accurate results through curl.exe. --tlsv1.0 traffic still seemed to be allowed. I'll try it again but just use the browser for my test. Thanks
0
Alexander
Telerik team
answered on 02 Aug 2018, 10:50 AM
Hi,

Do not forget to remove the <client> token too. If the <client> token is present Fidder will offer the protocols the client offered to him in addition to other listed protocols.

Regards,
Alexander
Progress Telerik
Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
Tags
Fiddler Classic
Asked by
Kevin
Top achievements
Rank 1
Answers by
Alexander
Telerik team
Kevin
Top achievements
Rank 1
Share this question
or