It should be possible to pass a list of supported encryption protocols to a MongoDB server process. The server would configure OpenSSL to make and accept connections using only those protocols. A user with specialized security requirements, for example, would then be able to setup a server to only use TLS 1.2.
- related to
SERVER-20401 Publicly expose net.ssl.disabledProtocols