Remove incorrect claim about U2F in Firefox

2024-10-01 01:25:40 -04:00 · 2020-02-03 23:25:27 -05:00 · 2020-02-03 23:25:27 -05:00 · e8639c36f9
commit e8639c36f9
parent 1ff35ceacc
1 changed files with 1 additions and 6 deletions
--- a/user/security-in-qubes/u2f-proxy.md
+++ b/user/security-in-qubes/u2f-proxy.md
@ -114,17 +114,12 @@ For example, if your `banking` qube enrolls your banking key, and your `twitter`

 ## TemplateVM and browser support

-The large number of possible combinations of TemplateVM (Fedora 27, 28; Debian 8, 9) and browser (multiple Google Chrome versions, multiple Chromium versions) made it impractical for us to test every combination that users are likely to attempt with the Qubes U2F Proxy.
+The large number of possible combinations of TemplateVM (Fedora 27, 28; Debian 8, 9) and browser (multiple Google Chrome versions, multiple Chromium versions, multiple Firefox versions) made it impractical for us to test every combination that users are likely to attempt with the Qubes U2F Proxy.
 In some cases, you may be the first person to try a particular combination.
 Consequently (and as with any new feature), users will inevitably encounter bugs.
 We ask for your patience and understanding in this regard.
 As always, please [report any bugs you encounter].

-Unfortunately, the U2F protocol that Qubes U2F Proxy supports has been superseded by a newer, better-standardized protocol: Web Authentication, also known as Webauthn.
-Chrome and Chromium support U2F out of the box, but Firefox does not.
-Therefore if you want to use Qubes U2F Proxy with Firefox you need to enable `security.webauthn.u2f` in `about:config`, but this is not recommended because U2F is deprecated technology.
-Mozilla has no plans to enable this flag by default in the future, and while there are no plans to remove it, Mozilla does not guarantee that it will always be available.
-
 [Qubes U2F Proxy]: https://github.com/QubesOS/qubes-app-u2f
 [USB]: /doc/usb/
 [U2F]: https://en.wikipedia.org/wiki/U2F