Will Firefox block all SSL in the future, or just SSLv3?
I have some panicked people in my office, so I decided to go the source. "They" heard... I do not know where... that Firefox's next update would block ALL SSL, therefore any website we need to log into will be blocked. From what I can see on this support site, nothing is coming that is different from what happened in December 2014 in response to Poodle with the SSLv.3.
I need to settle the ruffled feathers: will Firefox still work with SSL in the future?
Thank you very much for your time :)
Soluzione scelta
Note that support for some weak ciphers has been removed.
See also:
- https://developer.mozilla.org/en-US/Firefox/Releases/36/Site_Compatibility#Security
- https://developer.mozilla.org/en-US/Firefox/Releases/37/Site_Compatibility#Security
- https://developer.mozilla.org/en-US/Firefox/Releases/38/Site_Compatibility#Security
- RFC 7465 - Prohibiting RC4 Cipher Suites:
https://tools.ietf.org/html/rfc7465
Tutte le risposte (2)
That's a crazy rumor.
As far as I know, TLS 1.2, TLS 1.1 and TLS 1.0 will continue to work for many, many versions.
If someone needs to confirm, they can download a "future" version and try it out. It's probably least disruptive to use the unofficial "Portable" build for testing:
Soluzione scelta
Note that support for some weak ciphers has been removed.
See also:
- https://developer.mozilla.org/en-US/Firefox/Releases/36/Site_Compatibility#Security
- https://developer.mozilla.org/en-US/Firefox/Releases/37/Site_Compatibility#Security
- https://developer.mozilla.org/en-US/Firefox/Releases/38/Site_Compatibility#Security
- RFC 7465 - Prohibiting RC4 Cipher Suites:
https://tools.ietf.org/html/rfc7465