23 July 2021, 09:05

In this release, mbed TLS has been updated to v3.0.0. In that version, support for TLSv1.0 and TLSv1.1 has been dropped. Because HTTP Public Key Pinning (HPKP) is no longer supported by browsers for quite some time, I dropped support for that as well.

Let's hope mbed TLS v3.0.0 released will clear the road for TLSv1.3 support soon.

23 July 2021, 14:21
Hello Hugo, I have successfully installed it on OpenBSD and Armbian. Thank you. Heiko
Dale Farnsworth
23 July 2021, 19:21
Thank you Hugo. I've been using Hiawatha since I heard you on Floss Weekly. Still works great!
24 July 2021, 05:31
Thanks a lot for this new release! As always, everything works perfectly on Debian Stretch and Buster. Just needed to remove the MinTLSversion and PublicKeyPins config options as indicated in the changelog.
Lorenzo L. Ancora
9 August 2021, 08:53
Thanks for keeping developing this open source web server.
14 September 2021, 11:04
Hello Hugo, thanks for this ongoing development. Do you have any news about Chris Wadge maintaining the Debian Repo? The latest version there is 10.12.
Hugo Leisink
14 September 2021, 11:08
Hi Bernd. No, haven't had any contact with him for a few years. I think last contact was when I posted the blog post about 'scaling down the project'. A Debian package is easy to create btw. Just run the script extra/make_debian_package.
Chris Wadge
14 September 2021, 18:00
@Bernd Sorry for the lack of updates. I'm still alive, though my life has been a bit upside down lately. In addition, I've just moved and I'm still unpacking. There are a handful of personal projects that badly need my attention, and my Hiawatha repository is at the top of my list.