X
Tap here to go to the mobile version of the site.

Support Forum

Can I re-enable SSL in Firefox without downgrading? When I hit an SSL-only site, my only current option is to use another browser.

Posted

Just hit an SSL-only site that I needed to access that FF 35 blocked. I don't see an obvious way to create an exception or re-enable it. We need this option... many users understand POODLE and can make an intelligent decision regarding the risks. TLS has its vulnerabilities as well.

Just hit an SSL-only site that I needed to access that FF 35 blocked. I don't see an obvious way to create an exception or re-enable it. We need this option... many users understand POODLE and can make an intelligent decision regarding the risks. TLS has its vulnerabilities as well.

Chosen solution

hello ancistrus, as you know ssl3.0 encrypted connections can be no longer considered secure since an attack vector against them ("POODLE") has become known. please contact the webmaster in charge of the site and urge them to update their encryption to something contemporary. https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0/

if you want to re-enable ssl 3.0 in firefox you can do that - however keep the consequences in mind, that you will become vulnerable to the attack mentioned above: enter about:config into the firefox address bar (confirm the info message in case it shows up) & search for the preference named security.tls.version.min. double-click it, change its value to 0 and restart the browser.

Read this answer in context 11

Additional System Details

Installed Plug-ins

  • ActiveTouch General Plugin Container Version 105
  • Adobe PDF Plug-In For Firefox and Netscape 11.0.10
  • A plugin to detect whether the Adobe Application Manager is installed on this machine.
  • Citrix Receiver Plugin (Win32)
  • Citrix URL-Redirection Helper Plugin
  • GEPlugin
  • Google Update
  • NPRuntime Script Plug-in Library for Java(TM) Deploy
  • Next Generation Java Plug-in 10.71.2 for Mozilla browsers
  • The plugin allows you to have a better experience with Microsoft SharePoint
  • The plugin allows you to have a better experience with Microsoft Lync
  • np-mswmp
  • The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
  • Shockwave Flash 16.0 r0
  • 5.1.31211.0
  • Sling Player 2.4.0.113
  • Yahoo! activeX Plug-in Bridge
  • iTunes Detector Plug-in
  • npIPCReg DLL - 3.0.0.1

Application

  • User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:35.0) Gecko/20100101 Firefox/35.0

More Information

philipp
  • Top 25 Contributor
  • Moderator
5315 solutions 23470 answers

Chosen Solution

hello ancistrus, as you know ssl3.0 encrypted connections can be no longer considered secure since an attack vector against them ("POODLE") has become known. please contact the webmaster in charge of the site and urge them to update their encryption to something contemporary. https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0/

if you want to re-enable ssl 3.0 in firefox you can do that - however keep the consequences in mind, that you will become vulnerable to the attack mentioned above: enter about:config into the firefox address bar (confirm the info message in case it shows up) & search for the preference named security.tls.version.min. double-click it, change its value to 0 and restart the browser.

hello ancistrus, as you know ssl3.0 encrypted connections can be no longer considered secure since an attack vector against them ("POODLE") has become known. please contact the webmaster in charge of the site and urge them to update their encryption to something contemporary. https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0/ if you want to re-enable ssl 3.0 in firefox you can do that - however keep the consequences in mind, that you will become vulnerable to the attack mentioned above: enter '''about:config '''into the firefox address bar (confirm the info message in case it shows up) & search for the preference named '''security.tls.version.min'''. double-click it, change its value to '''0''' and restart the browser.

Question owner

Thanks, exactly what I needed.

Thanks, exactly what I needed.
cor-el
  • Top 10 Contributor
  • Moderator
17534 solutions 158549 answers

You can use this extension to enable SSL3 temporarily for a website that needs SSL3.

You can use this extension to enable SSL3 temporarily for a website that needs SSL3. *SSL Version Control: https://addons.mozilla.org/firefox/addon/ssl-version-control/ *https://blog.mozilla.org/security/2014/10/14/the-poodle-attack-and-the-end-of-ssl-3-0/
James
  • Top 25 Contributor
  • Moderator
1598 solutions 11287 answers

Helpful Reply

What philipp should have mentioned about changing the security.tls.version.min to zero is that this should only be done temporary and not made as a permanent change. You may go to another site and think you were secure when you are not due to it using the vulnerable SSL 3.0.

What philipp should have mentioned about changing the security.tls.version.min to zero is that '''this should only be done temporary and not made as a permanent change'''. You may go to another site and think you were secure when you are not due to it using the vulnerable SSL 3.0.
Lancer525 1 solutions 28 answers

Helpful Reply

"contact the webmaster in charge of the site and urge them to update their encryption to something contemporary."

Is the least helpful comment one could imagine.

It's a government website. YOU try getting in touch with one of their webmasters and getting them to do anything.

"contact the webmaster in charge of the site and urge them to update their encryption to something contemporary." Is the least helpful comment one could imagine. It's a government website. YOU try getting in touch with one of their webmasters and getting them to do anything.