Mozilla Server Side TLS – Recommended Configurations

[jeltz]

I wonder what feature is missing from PostgreSQL. It supports TLSv1.3 and supports letting the client pick cipher.

EDIT: NVM, I forgot that ssl_min_protocol_version was added in PostgreSQL 12 which is not released yet.