github-starred/frp
2
0
Fork 0
mirror of https://github.com/fatedier/frp.git synced 2026-05-15 08:05:49 -06:00
Code Issues 40 Projects Packages Wiki Activity Actions 1

[GH-ISSUE #3043] [Feature Request] remove TLS 1.0/1.1 support #2435

New issue
Closed
opened 2026-05-05 13:33:57 -06:00 by gitea-mirror · 5 comments
gitea-mirror commented 2026-05-05 13:33:57 -06:00
Owner
Copy link

Originally created by @popolin7991 on GitHub (Aug 3, 2022).
Original GitHub issue: https://github.com/fatedier/frp/issues/3043

Describe the feature request

sslscan frp server bind_port TLSv1.0/1.1 enabled
If not blocked, detect obsolete cipher suites

Describe alternatives you've considered

No response

Affected area

  • Docs
  • Installation
  • Performance and Scalability
  • Security
  • User Experience
  • Test and Release
  • Developer Infrastructure
  • Client Plugin
  • Server Plugin
  • Extensions
  • Others
Originally created by @popolin7991 on GitHub (Aug 3, 2022). Original GitHub issue: https://github.com/fatedier/frp/issues/3043 ### Describe the feature request sslscan frp server bind_port TLSv1.0/1.1 enabled If not blocked, detect obsolete cipher suites ### Describe alternatives you've considered _No response_ ### Affected area - [ ] Docs - [ ] Installation - [ ] Performance and Scalability - [X] Security - [ ] User Experience - [ ] Test and Release - [ ] Developer Infrastructure - [ ] Client Plugin - [ ] Server Plugin - [ ] Extensions - [ ] Others
gitea-mirror 2026-05-05 13:33:57 -06:00
gitea-mirror commented 2026-05-05 13:34:00 -06:00
Author
Owner
Copy link

@popolin7991 commented on GitHub (Aug 3, 2022):

frp 0.35.1

  • TLSv1.0 disabled
  • TLSv1.1 disabled
  • TLSv1.2 disabled
  • TLSv1.3 disabled

frp 0.41.0

  • TLSv1.0 enabled
  • TLSv1.1 enabled
  • TLSv1.2 enabled
  • TLSv1.3 enabled
<!-- gh-comment-id:1203419329 --> @popolin7991 commented on GitHub (Aug 3, 2022): frp 0.35.1 - TLSv1.0 disabled - TLSv1.1 disabled - TLSv1.2 disabled - TLSv1.3 disabled frp 0.41.0 - TLSv1.0 enabled - TLSv1.1 enabled - TLSv1.2 enabled - TLSv1.3 enabled
gitea-mirror commented 2026-05-05 13:34:01 -06:00
Author
Owner
Copy link

@Becods commented on GitHub (Aug 3, 2022):

Why do you propose to do this?

What is the motivation for doing it?

What will happen when the proposal is implemented?

<!-- gh-comment-id:1203932530 --> @Becods commented on GitHub (Aug 3, 2022): Why do you propose to do this? What is the motivation for doing it? What will happen when the proposal is implemented?
gitea-mirror commented 2026-05-05 13:34:02 -06:00
Author
Owner
Copy link

@popolin7991 commented on GitHub (Aug 4, 2022):

@Becods 資安漏洞?!
TLS 1.0/1.1 已被棄用,只是想問問該怎麼關閉

<!-- gh-comment-id:1204657346 --> @popolin7991 commented on GitHub (Aug 4, 2022): @Becods 資安漏洞?! TLS 1.0/1.1 已被棄用,只是想問問該怎麼關閉
gitea-mirror commented 2026-05-05 13:34:03 -06:00
Author
Owner
Copy link

@Anduin2017 commented on GitHub (Aug 4, 2022):

Directly expose 443 port as pure TCP. Secure that in the original web server.

Here is my configuration:

Sample frps.ini:

[common]
bind_port = 7000
token = your_strong_password

Sample frpc.ini:

[common]
server_addr = my-frp.com
server_port = 7000
token = your_strong_password

[HTTP]
type = tcp
local_ip = 127.0.0.1
local_port = 80
remote_port = 80

[HTTPS]
type = tcp
local_ip = 127.0.0.1
local_port = 443
remote_port = 443

And install a modern web server locally, listening to local 80 and 443.

You can follow the steps via the document from the web server you installed. Disable obsolete protocols and you can pass that.

image

image

<!-- gh-comment-id:1204799659 --> @Anduin2017 commented on GitHub (Aug 4, 2022): Directly expose 443 port as pure TCP. Secure that in the original web server. Here is my configuration: --------------------- Sample frps.ini: ```ini [common] bind_port = 7000 token = your_strong_password ``` Sample frpc.ini: ```ini [common] server_addr = my-frp.com server_port = 7000 token = your_strong_password [HTTP] type = tcp local_ip = 127.0.0.1 local_port = 80 remote_port = 80 [HTTPS] type = tcp local_ip = 127.0.0.1 local_port = 443 remote_port = 443 ``` And install a modern web server locally, listening to local 80 and 443. You can follow the steps via the document from the web server you installed. Disable obsolete protocols and you can pass that. ![image](https://user-images.githubusercontent.com/19531547/182775137-452170e1-27cd-46a7-8ccd-b776f4be69f9.png) ![image](https://user-images.githubusercontent.com/19531547/182775166-5c750414-afee-440c-aadc-8ded954ead5d.png)
gitea-mirror commented 2026-05-05 13:34:03 -06:00
Author
Owner
Copy link

@github-actions[bot] commented on GitHub (Sep 4, 2022):

Issues go stale after 30d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.

<!-- gh-comment-id:1236223051 --> @github-actions[bot] commented on GitHub (Sep 4, 2022): Issues go stale after 30d of inactivity. Stale issues rot after an additional 7d of inactivity and eventually close.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
dev
new
master
copilot/review-pull-request-5198
v0.68.1
v0.68.0
v0.67.0
v0.66.0
v0.65.0
v0.64.0
v0.63.0
v0.62.1
v0.62.0
v0.61.2
v0.61.1
v0.61.0
v0.60.0
v0.59.0
v0.58.1
v0.58.0
v0.57.0
v0.56.0
v0.55.1
v0.55.0
v0.54.0
v0.53.2
v0.53.1
v0.53.0
v0.52.3
v0.52.2
v0.52.1
v0.52.0
v0.51.3
v0.51.2
v0.51.1
v0.51.0
v0.50.0
v0.49.0
v0.48.0
v0.47.0
v0.46.1
v0.46.0
v0.45.0
v0.44.0
v0.43.0
v0.42.0
v0.41.0
v0.40.0
v0.39.1
v0.39.0
v0.38.0
v0.37.1
v0.37.0
v0.36.2
v0.36.1
v0.36.0
v0.35.1
v0.35.0
v0.34.3
v0.34.2
v0.34.1
v0.34.0
v0.33.0
v0.32.1
v0.32.0
v0.31.2
v0.31.1
v0.31.0
v0.30.0
v0.29.1
v0.29.0
v0.28.2
v0.28.1
v0.28.0
v0.27.1
v0.27.0
v0.26.0
v0.25.3
v0.25.2
v0.25.1
v0.25.0
v0.24.1
v0.24.0
v0.23.3
v0.23.2
v0.23.1
v0.23.0
v0.22.0
v0.21.0
v0.20.0
v0.19.1
v0.19.0
v0.18.0
v0.17.0
v0.16.1
v0.16.0
v0.15.1
v0.15.0
v0.14.1
v0.14.0
v0.13.0
v0.12.0
v0.11.0
v0.10.0
v0.9.3
v0.9.2
v0.9.1
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
v0.5.0
v0.3.0
v0.2.0
v0.1.0
Labels
Clear labels   
In Progress

   
WIP

   
WaitingForInfo

   
bug

   
doc

   
duplicate

   
easy

   
enhancement

   
future

   
help wanted

   
invalid

   
lifecycle/stale

   
need-issue-template

   
need-usage-help

   
no plan

   
proposal

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
todo
No labels
In Progress
WIP
WaitingForInfo
bug
doc
duplicate
easy
enhancement
future
help wanted
invalid
lifecycle/stale
need-issue-template
need-usage-help
no plan
proposal
pull-request
question
todo
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/frp#2435
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?