From b6fe925e3cf7d238d102aa34f737695d440899c3 Mon Sep 17 00:00:00 2001 From: Andreas Grapentin Date: Tue, 5 Sep 2017 07:43:12 +0200 Subject: libre/icecat: updated to 52.3.0 --- libre/icecat/disable-crypto-hardening-settings.patch | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) (limited to 'libre/icecat/disable-crypto-hardening-settings.patch') diff --git a/libre/icecat/disable-crypto-hardening-settings.patch b/libre/icecat/disable-crypto-hardening-settings.patch index 3c7dedd77..c6dfb1ac1 100644 --- a/libre/icecat/disable-crypto-hardening-settings.patch +++ b/libre/icecat/disable-crypto-hardening-settings.patch @@ -9,19 +9,19 @@ index 3308a22..6b81444 100644 -pref("security.tls.unrestricted_rc4_fallback", false); -pref("security.tls.insecure_fallback_hosts.use_static_list", false); -pref("security.tls.version.min", 1); --pref("security.ssl.require_safe_negotiation", true); +-pref("security.ssl.require_safe_negotiation", false); -pref("security.ssl.treat_unsafe_negotiation_as_broken", true); -pref("security.ssl3.rsa_seed_sha", true); -pref("security.OCSP.enabled", 1); --pref("security.OCSP.require", true); +-pref("security.OCSP.require", false); // set to false otherwise it breaks captive portal usage +//pref("security.tls.unrestricted_rc4_fallback", false); +//pref("security.tls.insecure_fallback_hosts.use_static_list", false); +//pref("security.tls.version.min", 1); -+//pref("security.ssl.require_safe_negotiation", true); ++//pref("security.ssl.require_safe_negotiation", false); +//pref("security.ssl.treat_unsafe_negotiation_as_broken", true); +//pref("security.ssl3.rsa_seed_sha", true); +//pref("security.OCSP.enabled", 1); -+//pref("security.OCSP.require", true); ++//pref("security.OCSP.require", false); // set to false otherwise it breaks captive portal usage // Disable channel updates pref("app.update.enabled", false); @@ -36,19 +36,19 @@ index bfc6cba..cfdeb22 100644 -pref("security.tls.unrestricted_rc4_fallback", false); -pref("security.tls.insecure_fallback_hosts.use_static_list", false); -pref("security.tls.version.min", 1); --pref("security.ssl.require_safe_negotiation", true); +-pref("security.ssl.require_safe_negotiation", false); -pref("security.ssl.treat_unsafe_negotiation_as_broken", true); -pref("security.ssl3.rsa_seed_sha", true); -pref("security.OCSP.enabled", 1); --pref("security.OCSP.require", true); +-pref("security.OCSP.require", false); // set to false otherwise it breaks captive portal usage +//pref("security.tls.unrestricted_rc4_fallback", false); +//pref("security.tls.insecure_fallback_hosts.use_static_list", false); +//pref("security.tls.version.min", 1); -+//pref("security.ssl.require_safe_negotiation", true); ++//pref("security.ssl.require_safe_negotiation", false); +//pref("security.ssl.treat_unsafe_negotiation_as_broken", true); +//pref("security.ssl3.rsa_seed_sha", true); +//pref("security.OCSP.enabled", 1); -+//pref("security.OCSP.require", true); ++//pref("security.OCSP.require", false); // set to false otherwise it breaks captive portal usage // Disable channel updates pref("app.update.enabled", false); -- cgit v1.2.3