With the January Update we disabled the nonˋforward TLS_RSA ciphers, which Potentials would Interrup Communication with some of our Customers Partners (as expected).
We therefore recommend those customers to re-enable it. However what I noticed is, that it is not (also) in the Legacy List (like some other disabled ciphers). I suspect it already has lower priority, but would it make sense to add it also to the Legacy ciphers?
BTW unlike other options the Oracle Crypto Roadmap seems to not have a description how to re-enable it (I mean it is failry obvious, but given It’s damage potential I would have thought it’s spelled out anyway)
Gruß,
Bernd
--
https://bernd.eckenfels.net
