Skip to content
Snippets Groups Projects
Closed (moved) Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45
  • View options

    • Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45

    • View options
    • Closed (moved) created by Georg Koppen

    MOzilla released Firefox 43 which did not accept SHA-1 signed certificates anymore. However, this apparently broke some MITM boxes (https://blog.mozilla.org/security/2016/01/06/man-in-the-middle-interfering-with-increased-security/) and they released a point update reverting this change.

    We don't want to have this security feature reverted and should make sure our ESR 45 based code is rejecting SHA-1 signed certificates as expected.

    Attributes

    Assignees

    None

    Labels

    TorBrowserTeam201604R component applications/tor browser ff45-esr owner tbb-team priority high resolution fixed severity major status closed tbb-6.0a5 tbb-security type task

    Milestone

    None

    Dates

    Start: None

    Due: None

    Time tracking

    No estimate or time spent

    Activity

    • All activity
    • Comments only
    • History only
    • Newest first
    • Oldest first