Hi there,

I was wondering if we can have the SSL subsystem move away from TLS 1.2 and use forward secrecy and either AES-GCM or CHACHA20_POLY1305 as per the depreciation of TLS features / algorithms?
I am by no means an expert but I noticed when I enabled HTTPS on the default jenkins install (from a fresh apt-get on a new machine) and imported my SSL certificates into the keystore, that the first warning that Chrome gave was about the outdated TLS 1.2 connection method.