KotJohansson/Male-Poon
1
1
Fork 0
mirror of http://git.mos6581.com/ManchildProductions/Male-Poon.git synced 2026-05-26 16:39:26 +00:00
Code Issues Projects Releases Wiki Activity

Update security prefs for SWEET32.

Browse Source 
This also re-organizes the pref blocks and adds comments supplying reason(s) for disabled suites.
This commit is contained in:
Pale Moon
2016-08-30 13:32:05 +02:00
parent cafb593c0d
commit 132d65e46f
1 changed files with 20 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files
netwerk/base/public/security-prefs.js
+20 -20
View File
@@ -25,37 +25,37 @@ pref("security.ssl3.ecdhe_rsa_aes_128_sha", true);
pref("security.ssl3.ecdhe_ecdsa_aes_128_sha", true);
pref("security.ssl3.ecdhe_rsa_aes_256_sha", true);
pref("security.ssl3.ecdhe_ecdsa_aes_256_sha", true);
pref("security.ssl3.ecdhe_rsa_des_ede3_sha", true);
pref("security.ssl3.dhe_rsa_aes_128_sha", true);
pref("security.ssl3.dhe_rsa_camellia_128_sha", true);
pref("security.ssl3.dhe_rsa_aes_256_sha", true);
pref("security.ssl3.dhe_rsa_camellia_256_sha", true);
pref("security.ssl3.dhe_rsa_des_ede3_sha", true);
pref("security.ssl3.dhe_dss_aes_128_sha", true);
pref("security.ssl3.dhe_dss_aes_256_sha", true);
pref("security.ssl3.ecdhe_rsa_rc4_128_sha", false);
pref("security.ssl3.ecdhe_ecdsa_rc4_128_sha", false);
pref("security.ssl3.rsa_aes_128_sha", true);
pref("security.ssl3.rsa_camellia_128_sha", true);
pref("security.ssl3.rsa_aes_256_sha", true);
pref("security.ssl3.rsa_camellia_256_sha", true);
pref("security.ssl3.rsa_des_ede3_sha", true);
pref("security.ssl3.rsa_rc4_128_sha", false);
pref("security.ssl3.rsa_rc4_128_md5", false);
// Cipher suites disabled by default
pref("security.ssl3.rsa_fips_des_ede3_sha", false);
pref("security.ssl3.dhe_dss_camellia_256_sha", false);
pref("security.ssl3.ecdh_ecdsa_aes_256_sha", false);
pref("security.ssl3.ecdh_ecdsa_aes_128_sha", false);
pref("security.ssl3.ecdh_ecdsa_des_ede3_sha", false);
pref("security.ssl3.ecdh_ecdsa_rc4_128_sha", false);
pref("security.ssl3.ecdh_rsa_aes_256_sha", false);
pref("security.ssl3.ecdh_rsa_aes_128_sha", false);
pref("security.ssl3.ecdh_rsa_des_ede3_sha", false);
pref("security.ssl3.ecdh_rsa_rc4_128_sha", false);
pref("security.ssl3.dhe_dss_camellia_128_sha", false);
pref("security.ssl3.rsa_seed_sha", false);
// Cipher suites disabled by default //Reason:
pref("security.ssl3.ecdhe_rsa_des_ede3_sha", false); //3DES
pref("security.ssl3.ecdhe_rsa_rc4_128_sha", false); //RC4
pref("security.ssl3.ecdhe_ecdsa_rc4_128_sha", false); //RC4
pref("security.ssl3.rsa_fips_des_ede3_sha", false); //FIPS,3DES
pref("security.ssl3.dhe_rsa_des_ede3_sha", false); //3DES
pref("security.ssl3.dhe_dss_camellia_256_sha", false); //DHE+DSS
pref("security.ssl3.dhe_dss_camellia_128_sha", false); //DHE+DSS
pref("security.ssl3.ecdh_ecdsa_aes_256_sha", false); //Non-ephemeral
pref("security.ssl3.ecdh_ecdsa_aes_128_sha", false); //Non-ephemeral
pref("security.ssl3.ecdh_ecdsa_des_ede3_sha", false); //Non-ephemeral,3DES
pref("security.ssl3.ecdh_ecdsa_rc4_128_sha", false); //Non-ephemeral,RC4
pref("security.ssl3.ecdh_rsa_aes_256_sha", false); //Non-ephemeral
pref("security.ssl3.ecdh_rsa_aes_128_sha", false); //Non-ephemeral
pref("security.ssl3.ecdh_rsa_des_ede3_sha", false); //Non-ephemeral,3DES
pref("security.ssl3.ecdh_rsa_rc4_128_sha", false); //Non-ephemeral,RC4
pref("security.ssl3.rsa_seed_sha", false); //In disuse
pref("security.ssl3.rsa_des_ede3_sha", false); //3DES
pref("security.ssl3.rsa_rc4_128_sha", false); //RC4
pref("security.ssl3.rsa_rc4_128_md5", false); //RC4,MD5
pref("security.default_personal_cert", "Ask Every Time");
pref("security.remember_cert_checkbox_default_setting", true);