You’re right, it’s time to update our TLS policy.
However we can do it by following our approach and releasing a new “TLS policy” number. Thus I’d avoid adding UI checkboxes to disable specific protocols.
If we are smart enough we’ll do it for every TLS-based service on NethServer 7.7. Let’s start experimenting.
I moved your post to a new thread, because I’m afraid that TLS policy and PCI compliance are still far to find an agreement!
I hope this makes a step forward in that direction though