The logjam attack [https://weakdh.org/] allows an attacker to impersonate servers that support weak keys. This change implements https://addons.mozilla.org/en-US/firefox/addon/disable-dhe/ - gnuzilla

commit 58f127c1d5f8c89b9e55803701f734756d1cfa2a
parent fcf451a30770779086a854baa89aada6620c1908
Author: Ruben Rodriguez <ruben@gnu.org>
Date:   Wed, 24 Jun 2015 20:16:13 +0200

The logjam attack [https://weakdh.org/] allows an attacker to impersonate servers that support weak keys. This change implements https://addons.mozilla.org/en-US/firefox/addon/disable-dhe/

Diffstat:
M data/settings.js  | 6 ++++++

1 file changed, 6 insertions(+), 0 deletions(-)
diff --git a/data/settings.js b/data/settings.js
@@ -183,3 +183,9 @@ pref("pfs.filehint.url", "http://gnuzilla.gnu.org/plugins/PluginFinderService.ph
 pref("keyword.URL", "https://duckduckgo.com/html?t=gnu&q=!+");
 pref("browser.search.defaultenginename", "DuckDuckGo");
 pref("browser.search.order.extra.duckduckgo", "DuckDuckGo");
+
+// https://directory.fsf.org/wiki/Disable_DHE
+pref("security.ssl3.dhe_rsa_aes_128_sha", false);
+pref("security.ssl3.dhe_rsa_aes_256_sha", false);
+pref("security.ssl3.dhe_dss_aes_128_sha", false);
+pref("security.ssl3.dhe_rsa_des_ede3_sha", false);

	gnuzilla default description
	git clone https://git.awy.one/gnuzilla.git
	Log \| Files \| Refs \| README \| LICENSE