Avatar for Username

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Please ask a new question if you need help.

Why is security.ssl3.dhe_dss_aes_256_sha set to "false" on Firefox 33.0?

  • 1 reply
  • 2 have this problem
  • 34 views
  • Last reply by cor-el

Marcus320
Marcus320

I just noticed that on Firefox 33.0 release (WinXP home 32 bit), the security.ssl3.dhe_dss_aes_256_sha is set to "false" by default. But not the releated weaker security.ssl3.dhe_dss_aes_128_sha, which is still at "true".

It must have happened on one of the latest versions.

Why has the former been disabled?

I just noticed that on Firefox 33.0 release (WinXP home 32 bit), the security.ssl3.dhe_dss_aes_256_sha is set to "false" by default. But not the releated weaker security.ssl3.dhe_dss_aes_128_sha, which is still at "true". It must have happened on one of the latest versions. Why has the former been disabled?

Chosen solution

See this bug report for details:

  • bug 1036765 - Disable cipher suites that are not in the "Browser Cipher Suite" proposal that are still enabled

Please do not comment in bug reports
https://bugzilla.mozilla.org/page.cgi?id=etiquette.html

Read this answer in context 👍 0

All Replies (1)

cor-el
cor-el
  • Moderator

Chosen Solution

See this bug report for details:

  • bug 1036765 - Disable cipher suites that are not in the "Browser Cipher Suite" proposal that are still enabled

Please do not comment in bug reports
https://bugzilla.mozilla.org/page.cgi?id=etiquette.html