ldap and ldap-codfw1dev seem to be accepting TLSv1.0 and TLSv1.1. This is not in line with our HTTPS guidelines and should be fixed.
brett@seaborgium:~$ curl --tls-max 1.1 localhost:636 curl: (52) Empty reply from server brett@seaborgium:~$ curl --tls-max 1.0 localhost:636 curl: (52) Empty reply from server
brett@cloudservices2004-dev:~$ curl localhost:636 --tls-max 1.1 curl: (52) Empty reply from server brett@cloudservices2004-dev:~$ curl localhost:636 --tls-max 1.0 curl: (52) Empty reply from server