PCI Compliance - ability to disable early TLS

Question

Can Sophos confirm which release and date of release for functionality to be added to disable support for early TLS, as per PCI DSS requirements that come into force on 30th June 2018. 
 
 This was originally planned for SEA v4.2.0.0 according to dialogue I had with Sophos Tech in 2016.

Red_Warrior · Answer

Hi Johndoe 
 As of today SEA-196 the code review is done and its tentatively scheduled for 4.3.2.0. There is no hard release date on this patch as it contains other current development issues, But it should not be to far off. 
 
 Please ensure under the tls section you do NOT enable the legacy support button. 
 
 It looks like postfix will also only use 1.1 or 1.2 when completed.

However its best to review the release notes when the update comes out.