četrtek, 09. januar 2014

Improving security in Firefox

Today I found a nice website that tells you how secure your TLS/SSL client is. 
I'm using Firefox 26.0 and the website said that my TLS client is "Bad".
Btw., Google Chrome  31.0.1650.63 is rated as "Probably OK" from the start.
Hmm, Firefox can't be so much worse than Chrome, right?

So, couple of minutes later that I found another website that helped me bring Firefox to the same level with couple of steps:
- go to about:config
- set security.tls.version.min to 1 (TLS 1.0)
- set security.tls.version.min to 3 (TLS 1.2)
- set security.ssl3.rsa_fips_des_ede3_sha to false to disable SSL_RSA_FIPS_WITH_3DES_EDE_CBC_SHA chiper, which is known to be insecure
Objavite komentar