We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Avatar for Username

تلاش سپورٹ

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

مزید سیکھیں

اس تھریڈ کو آرکائیوکیا گیا تھا۔ اگر آپ کو مدد کی ضرورت ہو تو براہ مہربانی نیا سوال پوچھیں۔

Disabling SSL3 ciphers for FIPS 140-2 compliance

  • 1 جواب دیں
  • 4 میں یہ مسئلہ ہے
  • 1 دیکھیں
  • آخری جواب بذریعہ cor-el

mikeoes
mikeoes
more options

In your article "Configuring Firefox for FIPS 140-2" under "Step 3: Disable all the non-FIPS TLS cipher suites in about:config" - should not all the SSL3 cipher suites be disabled as well, e.g. the first "security.ssl3" cipher in the list is "security.ssl3.dhe_dss_aes_128_sha" and has a value of "true"?

In your article "Configuring Firefox for FIPS 140-2" under "Step 3: Disable all the non-FIPS TLS cipher suites in about:config" - should not all the SSL3 cipher suites be disabled as well, e.g. the first "security.ssl3" cipher in the list is "security.ssl3.dhe_dss_aes_128_sha" and has a value of "true"?

تمام جوابات (1)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

In step 1 you disabled SSL2 and SSL3, so there is no need to disable individual SSL3 ciphers.

See Configuring Firefox for FIPS 140-2