I am running an Angular app inside app engine. Recently this application was PEN tested and one of the issues that came up was around TLS1.0 and TLS 1.1 in use.
The recommendation from these results are to disable all TLS protocols before TLS1.2. Only use cipher suites considered cryptographically strong. The application presently doesnt have a custom domain and is purely hosted on .appspot.com How do I achieve this? Would I need to use a custom domain for this? I've tried read around but feel a little out of my comfort zone with this. Thanks -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to google-appengine+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/7a90905a-2a07-4678-8f63-02182037c58b%40googlegroups.com.
