Currently unreleased, but puppetlabs/apache will respect the EL8 defaults. It follows the system level configuration for TLS protocols, which out of the box is TLSv1.2 & TLSv1.3.
It still keeps stricter security on Debian since there the default still allows TLSv1.1 and some sub-optimal ciphers.
Related issues
Feature #35629: Default Apache to use system ciphers via PROFILE=system
Added by Ewoud Kohl van Wijngaarden over 1 year ago
Refs #35629 - Use built in Apache defaults on EL
Currently unreleased, but puppetlabs/apache will respect the EL8
defaults. It follows the system level configuration for TLS protocols,
which out of the box is TLSv1.2 & TLSv1.3.
It still keeps stricter security on Debian since there the default still
allows TLSv1.1 and some sub-optimal ciphers.