Confirmed users
563
edits
Security:Renegotiation: Difference between revisions
→security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref
(→Action) |
|||
| Line 92: | Line 92: | ||
===security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref=== | ===security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref=== | ||
Current default value: | Current default value: DEPENDS, see end of section | ||
It's not desirable to set this to true, as it completely disables the new protection mechanisms. However, in controlled environments where many old new server must be accessed, this may be used. | It's not desirable to set this to true, as it completely disables the new protection mechanisms. However, in controlled environments where many old new server must be accessed, this may be used. | ||
| Line 99: | Line 99: | ||
The preference carries "temporarily_available_pref" in its name, as it's supposed to go away later. | The preference carries "temporarily_available_pref" in its name, as it's supposed to go away later. | ||
Regarding default values: | |||
* The development version of Firefox (3.7-pre) uses "false" | |||
* The stable releases 3.5.9 and 3.6.2 use "true" | |||
* As soon as a sufficient amount of servers had a chance to upgrade, the default in stable releases will be switched to "false", too | |||
===security.ssl.treat_unsafe_negotiation_as_broken=== | ===security.ssl.treat_unsafe_negotiation_as_broken=== | ||