Confirmed users
238
edits
SecurityEngineering/Public Key Pinning/ReleaseEngineering: Difference between revisions
SecurityEngineering/Public Key Pinning/ReleaseEngineering (view source)
Revision as of 23:47, 22 May 2014
, 22 May 2014→How to rollback pinning for Firefox
| Line 12: | Line 12: | ||
Pinning is controlled by a preference, security.cert_pinning.enforcement_level. To disable pinning, set this pref to 0. In case of emergency, we can | Pinning is controlled by a preference, security.cert_pinning.enforcement_level. To disable pinning, set this pref to 0. In case of emergency, we can | ||
# Push a hotfix to disable the pinning pref. In case pinning breaks AMO, this will not be possible. | # Push a hotfix to disable the pinning pref. In case pinning breaks AMO, this will not be possible. | ||
# Push a chemspill. | # Push a chemspill. In case pinning breaks aus4, this will not be possible. | ||
# Wait 8 weeks until the pinset expires once it reaches stable. | # {{bug|1012875}} Wait 8 or 10 weeks until the pinset expires once it reaches stable, during which time users will not be able to reach sites that are pinned incorrectly. | ||
== How long do updates take? == | == How long do updates take? == | ||