Opened 5 years ago

Closed 5 years ago

#8420 closed enhancement (fixed)

Opt-out from TLS-specific settings

Reported by: sukhbir Owned by: ioerror
Priority: Medium Milestone:
Component: Applications/TorBirdy Version:
Severity: Keywords:
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

We should have an opt-out from the following TLS settings:

"security.ssl.require_safe_negotiation"
"security.ssl.treat_unsafe_negotiation_as_broken"

Even though this is not such a good idea, but many servers do not support TLS with secure renegotiation (or are using an older version of the protocol), and because we are enforcing this setting, some users are not able to use TorBirdy at all.

Child Tickets

Change History (1)

comment:1 Changed 5 years ago by sukhbir

Resolution: fixed
Status: newclosed

Fixed.

Note: See TracTickets for help on using tickets.