2024-04-01

Implementation of disabling cipher suite

To enhance security, we will disable the following cipher suites at the time of the Stable version release in July.

Cipher suites to be disabled

TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

Scope of impact

Access will no longer be available with the following OS and browser combinations:
IE 11 / Win 8.1 or earlier (IE 11 / Win 10 is supported)
IE 11 / Win Phone 8.1 or earlier
Safari 8 / OS X 10.10 or earlier

Verification method

If you can access the site at https://kuroco.app/ using your environment (OS, browser), you will still be able to access it without any issues after the mentioned changes.

Avoidance methods for the changes mentioned above

The management interface cannot avoid this change.
If you are using the domains kuroco-front.app, kuroco-img.app, kuroco.app, the change cannot be avoided.
For KurocoFront, KurocoFiles, KurocoAPI, if you are using a custom domain, you can avoid the change by modifying the DNS records set on the custom domain as follows:
cdn-g.kuroco-front.app => cdnv12-g.kuroco-front.app
cdn-g.kuroco-img.app => cdnv12-g.kuroco-img.app
cdn-g.kuroco.app => cdnv12-g.kuroco.app

Scheduled update date

In mid-July 2024, at the time of the stable version update.

About Kuroco Version Management

Contact

If you have any further questions regarding this matter, please feel free to contact Kuroco Support.

Support

Support

If you have any other questions, please contact us or check out Our Slack Community.

Contact form

Join Kuroco Slack community

Implementation of disabling cipher suite​

Cipher suites to be disabled​

Scope of impact​

Verification method​

Avoidance methods for the changes mentioned above​

Scheduled update date​

Contact​