remove 1203

default false since it was added in FF71 - see https://bugzilla.mozilla.org/1579285
This commit is contained in:
Thorin-Oakenpants 2021-07-20 02:00:33 +00:00 committed by GitHub
parent b761a9dd32
commit 3bb9fc713f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -641,8 +641,6 @@ user_pref("security.ssl.require_safe_negotiation", true);
* [1] https://www.ssllabs.com/ssl-pulse/ ***/ * [1] https://www.ssllabs.com/ssl-pulse/ ***/
// user_pref("security.tls.version.min", 3); // [DEFAULT: 3] // user_pref("security.tls.version.min", 3); // [DEFAULT: 3]
// user_pref("security.tls.version.max", 4); // user_pref("security.tls.version.max", 4);
/* 1203: enforce TLS 1.0 and 1.1 downgrades as session only ***/
user_pref("security.tls.version.enable-deprecated", false);
/* 1204: disable SSL session tracking [FF36+] /* 1204: disable SSL session tracking [FF36+]
* SSL Session IDs are unique and last up to 24hrs in Firefox (or longer with prolongation attacks) * SSL Session IDs are unique and last up to 24hrs in Firefox (or longer with prolongation attacks)
* [NOTE] These are not used in PB mode. In normal windows they are isolated when using FPI (4001) * [NOTE] These are not used in PB mode. In normal windows they are isolated when using FPI (4001)