As part of our ongoing efforts to keep our hosting infrastructure up to date with the latest, greatest, and most secure practices, we’ve updated our TLS hosting configuration for both webflow.io and custom domain sites to support TLS 1.3 — the most secure encryption protocol for modern browsers (see current guidance from Mozilla Security).
For anyone unfamiliar with TLS, it’s a technology that provides secure connections to hosted sites to protect customer traffic from eavesdropping or interference.
What’s changing?
Put simply: thanks to this update, people visiting your site will be able to connect more quickly and enjoy a more secure connection.
For the technical folks on the call: we’re adding support for TLS 1.3 connections and removing support for some older TLS 1.2 ciphers which are no longer recommended for general use. We’ll continue to support TLS 1.2 with ciphers that are secure. We don’t support TLS versions 1.1 and below, and have not done so for some time.
Will this affect my site visitors?
This update will only affect people using very old browsers — but visitors to your site whose browser versions are lower than those listed below will no longer be able to view Webflow-hosted websites. Instead, the browser will display an error banner.
Some customers may be using non-browser tools to carry out uptime checks or operate reverse proxy setups. In those cases, the following versions (or higher) will work:
- Java 8u31 (released 1/20/2015)
- OpenSSL 1.0.1 (released 3/14/2012)
Keep your browser up to date
Compatibility for hosted sites generally follows our browser support matrix, and all browser versions mentioned there are expected to work. Simply put — keep your browser up to date and you should not encounter any issues.
If you have questions about the new configuration, please contact our support team.