Hi Atlassian Sourcetree Community.
I saw this link stating that bitbucket will turn off tls 1.0 and 1.1, and only use tls 1.2 starting december-1. https://bitbucket.org/blog/deprecating-tlsv1-tlsv1-1-2018-12-01
So I upgraded sourcetree to the latest windows version, 3.0.8, and did a wireshark/tcpdump network capture. Most items are good tls 1.2, but when doing a Pull I do see some bad tls 1.0 entries. I'm on windows 10 pro ver 1703. Doing git from sourcetree Open->Terminal looks good (
GIT_CURL_VERBOSE=1 git ls-remote https://bitbucket.org/ uses 1.2). I'm using the built-in git of sourcetree.
So i'm concerned that something will break on that date. Can someone else confirm or deny what I saw, that some part of sourcetree is still using old tls 1.0 ?
Can you check what version of Git/Git Credential Manager you are using? see https://githubengineering.com/crypto-removal-notice/ for more information.
Sourcetree relies on the OS and should be just using TLS 1.2
A vulnerability has been published today in regards to Sourcetree for Windows. The goal of this article is to give you a summary of information we have gathered from Atlassian Community as a st...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event