QuantumBadger
diff --git a/‎src/main/java/org/quantumbadger/redreader/http/LegacyTLSSocketFactory.java
Lines changed: 0 additions & 93 deletions b/‎src/main/java/org/quantumbadger/redreader/http/LegacyTLSSocketFactory.java
Lines changed: 0 additions & 93 deletions
diff --git a/‎src/main/java/org/quantumbadger/redreader/http/okhttp/OKHTTPBackend.kt
Lines changed: 5 additions & 0 deletions b/‎src/main/java/org/quantumbadger/redreader/http/okhttp/OKHTTPBackend.kt
Lines changed: 5 additions & 0 deletions
@@ -22,6 +22,7 @@ import android.util.Log
 import okhttp3.CacheControl
 import okhttp3.Call
 import okhttp3.ConnectionPool
+import okhttp3.ConnectionSpec
 import okhttp3.Cookie
 import okhttp3.CookieJar
 import okhttp3.HttpUrl
@@ -102,6 +103,10 @@ class OKHTTPBackend private constructor() : HTTPBackend() {
 			builder.proxy(tor)
 		}
 
+		// This restrict the client to only use TLSv1.2 and TLSv1.3
+		// In other word, only modern website with HTTPS enabled
+		builder.connectionSpecs(listOf(ConnectionSpec.RESTRICTED_TLS))
+
 		builder.followRedirects(true)
 		builder.followSslRedirects(true)