TLS 1.0 Deprecation and Mitigation Tactics
With the deprecation of TLS 1.0 on the horizon, I'm curious how others are handling connectivity and mail delivery issues for dated client environments.
Lets face it, there are more environments live on the internet running deprecated protocols than there are environments running the latest and greatest in updates. How do you handle "important business emails" from these users and still maintain security?
I'd considered setting up a secondary gateway to accept incoming mail under less secure, but more heavily scrutinized conditions, but I've been told this might negate disabling it on the primary environments.
Ultimately my question is whether "you need to upgrade" is a valid response when we start receiving reports that end users can't send us emails.
