From aae5bf1c7f06f7c7f2fb14c0e825bb9278ecfcca Mon Sep 17 00:00:00 2001
From: Ruben Rodriguez <ruben@gnu.org>
Date: Tue, 10 May 2016 19:18:39 -0400
Subject: Updated ssl cypher settings

---
 data/settings.js | 17 -----------------
 1 file changed, 17 deletions(-)

(limited to 'data/settings.js')

diff --git a/data/settings.js b/data/settings.js
index e819953..2e5e258 100644
--- a/data/settings.js
+++ b/data/settings.js
@@ -154,23 +154,6 @@ pref("security.ssl.treat_unsafe_negotiation_as_broken", true);
 pref("security.ssl3.rsa_seed_sha", true);
 pref("security.OCSP.enabled", 1);
 pref("security.OCSP.require", true);
-//Disable unnecessary protocols
-pref("security.ssl3.rsa_rc4_128_sha", false);
-pref("security.ssl3.rsa_rc4_128_md5", false);
-pref("security.ssl3.rsa_des_ede3_sha", false);
-pref("security.ssl3.ecdhe_ecdsa_rc4_128_sha", false);
-pref("security.ssl3.ecdhe_rsa_rc4_128_sha", false);
-// https://directory.fsf.org/wiki/Disable_DHE
-// Avoid logjam attack
-pref("security.ssl3.dhe_rsa_aes_128_sha", false);
-pref("security.ssl3.dhe_rsa_aes_256_sha", false);
-pref("security.ssl3.dhe_dss_aes_128_sha", false);
-pref("security.ssl3.dhe_rsa_des_ede3_sha", false);
-//Optional
-//Perfect forward secrecy
-// pref("security.ssl3.rsa_aes_256_sha", false);
-//Force TLS 1.2
-// pref("security.tls.version.min", 3);
 
 // Disable channel updates
 pref("app.update.enabled", false);
-- 
cgit v1.2.3