From 54160cb6e57b0cd87d1c36f6a2377580d07f6e68 Mon Sep 17 00:00:00 2001
From: Ruben Rodriguez <ruben@gnu.org>
Date: Fri, 1 Sep 2017 16:37:14 -0400
Subject: Fixed OCSP check settings that were impeding captive portal usage

---
 data/settings.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'data/settings.js')

diff --git a/data/settings.js b/data/settings.js
index 7d92e2e..a67afd7 100644
--- a/data/settings.js
+++ b/data/settings.js
@@ -141,11 +141,11 @@ pref("browser.search.suggest.enabled", false);
 pref("security.tls.unrestricted_rc4_fallback", false);
 pref("security.tls.insecure_fallback_hosts.use_static_list", false);
 pref("security.tls.version.min", 1);
-pref("security.ssl.require_safe_negotiation", true);
+pref("security.ssl.require_safe_negotiation", false);
 pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
 pref("security.ssl3.rsa_seed_sha", true);
 pref("security.OCSP.enabled", 1);
-pref("security.OCSP.require", true);
+pref("security.OCSP.require", false); // set to false otherwise it breaks captive portal usage
 
 // Disable channel updates
 pref("app.update.enabled", false);
-- 
cgit v1.2.3