Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Avatar for Username

Hilfe durchsuchen

Vorsicht vor Support-Betrug: Wir fordern Sie niemals auf, eine Telefonnummer anzurufen, eine SMS an eine Telefonnummer zu senden oder persönliche Daten preiszugeben. Bitte melden Sie verdächtige Aktivitäten über die Funktion „Missbrauch melden“.

Weitere Informationen

Dieses Thema wurde archiviert. Bitte stellen Sie eine neue Frage, wenn Sie Hilfe benötigen.

In Firefox 38.5, how do I ensure it will only use tls 1.2 and not fallback to lower versions or ssl?

  • 2 Antworten
  • 4 haben dieses Problem
  • 1 Aufruf
  • Letzte Antwort von mmarino

mmarino
mmarino
more options

I'm using Firefox 38.5 on CentOS 5.6. My current settings in about:config are as follows: security.tls.version.fallback-limit = 3 security.tls.version.max = 3 security.tls.version.min = 1

Are these settings already correct to only allow tls 1.2 or do I need to change the min value to 3 as well?

I'm using Firefox 38.5 on CentOS 5.6. My current settings in about:config are as follows: security.tls.version.fallback-limit = 3 security.tls.version.max = 3 security.tls.version.min = 1 Are these settings already correct to only allow tls 1.2 or do I need to change the min value to 3 as well?

Ausgewählte Lösung

You would have to set security.tls.version.min = 3 if you really only want to enable TLS 1.2 Note that this will break servers that do not support TLS 1.2

0 means SSL 3.0, 1 means TLS 1.0, 2 means TLS 1.1, 3 means TLS 1.2 etc.

Diese Antwort im Kontext lesen 👍 4

Alle Antworten (2)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Ausgewählte Lösung

You would have to set security.tls.version.min = 3 if you really only want to enable TLS 1.2 Note that this will break servers that do not support TLS 1.2

0 means SSL 3.0, 1 means TLS 1.0, 2 means TLS 1.1, 3 means TLS 1.2 etc.

Geändert am von cor-el

mmarino
mmarino Fragesteller
more options

Thanks - excellent answer.