Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

Èròjà atẹ̀lélànà yii ni a ti fi pamọ́ fọ́jọ́ pípẹ́. Jọ̀wọ́ béèrè ìbéèrè titun bí o bá nílò ìrànwọ́.

Disabling SSL3 ciphers for FIPS 140-2 compliance

  • 1 èsì
  • 4 ní àwọn ìṣòro yìí
  • 6 views
  • Èsì tí ó kẹ́hìn lọ́wọ́ cor-el

mikeoes
mikeoes
more options

In your article "Configuring Firefox for FIPS 140-2" under "Step 3: Disable all the non-FIPS TLS cipher suites in about:config" - should not all the SSL3 cipher suites be disabled as well, e.g. the first "security.ssl3" cipher in the list is "security.ssl3.dhe_dss_aes_128_sha" and has a value of "true"?

In your article "Configuring Firefox for FIPS 140-2" under "Step 3: Disable all the non-FIPS TLS cipher suites in about:config" - should not all the SSL3 cipher suites be disabled as well, e.g. the first "security.ssl3" cipher in the list is "security.ssl3.dhe_dss_aes_128_sha" and has a value of "true"?

All Replies (1)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

In step 1 you disabled SSL2 and SSL3, so there is no need to disable individual SSL3 ciphers.

See Configuring Firefox for FIPS 140-2