Mostly for future as Jetty defaults seem OK. But as TLS 1.3 is entering the stage we may allow for easy disable of 1.2. Simple option is needed.