We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Avatar for Username

ค้นหาฝ่ายสนับสนุน

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

เรียนรู้เพิ่มเติม

หัวข้อนี้ถูกเก็บถาวรแล้ว โปรดถามคำถามใหม่หากคุณต้องการความช่วยเหลือ

Disabling SSL3 ciphers for FIPS 140-2 compliance

  • 1 การตอบกลับ
  • 4 คนมีปัญหานี้
  • 1 ครั้งที่ดู
  • ตอบกลับล่าสุดโดย cor-el

mikeoes
mikeoes
more options

In your article "Configuring Firefox for FIPS 140-2" under "Step 3: Disable all the non-FIPS TLS cipher suites in about:config" - should not all the SSL3 cipher suites be disabled as well, e.g. the first "security.ssl3" cipher in the list is "security.ssl3.dhe_dss_aes_128_sha" and has a value of "true"?

In your article "Configuring Firefox for FIPS 140-2" under "Step 3: Disable all the non-FIPS TLS cipher suites in about:config" - should not all the SSL3 cipher suites be disabled as well, e.g. the first "security.ssl3" cipher in the list is "security.ssl3.dhe_dss_aes_128_sha" and has a value of "true"?

การตอบกลับทั้งหมด (1)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

In step 1 you disabled SSL2 and SSL3, so there is no need to disable individual SSL3 ciphers.

See Configuring Firefox for FIPS 140-2