From 448d4de304b11451a6a5276c10b20dd59db8ee93 Mon Sep 17 00:00:00 2001
From: André Fabian Silva Delgado <emulatorman@parabola.nu>
Date: Wed, 11 May 2016 18:50:21 -0300
Subject: iceweasel-1:46.0.1.deb1-2: update ssl cypher settings

---
 libre/iceweasel/PKGBUILD  |  4 ++--
 libre/iceweasel/vendor.js | 17 -----------------
 2 files changed, 2 insertions(+), 19 deletions(-)

(limited to 'libre/iceweasel')

diff --git a/libre/iceweasel/PKGBUILD b/libre/iceweasel/PKGBUILD
index 2ca99f497..edb0ab10f 100644
--- a/libre/iceweasel/PKGBUILD
+++ b/libre/iceweasel/PKGBUILD
@@ -28,7 +28,7 @@ _pkgname=firefox
 pkgname=iceweasel
 epoch=1
 pkgver=$_debver.$_debrel
-pkgrel=1
+pkgrel=2
 
 pkgdesc="A libre version of Debian Iceweasel, the standalone web browser based on Mozilla Firefox."
 arch=(i686 x86_64)
@@ -69,7 +69,7 @@ sha256sums=('c9e2231711250c2c6cacc50f73b3e7c2a6bf2a24d1cc4d35504bf98beae9a7ba'
             '56eba484179c7f498076f8dc603d8795e99dce8c6ea1da9736318c59d666bff6'
             '2257dc69886bd0b72c48675a27c3a88b9cf6b598252c9e9f1c99763180684fc3'
             '3aea6676f1e53a09673b6ae219d281fc28054beb6002b09973611c02f827651d'
-            'e6e43c6b481891e33dbb95849865410a2a9e77165f7de2c2057d3a8bab990aec'
+            '62646fdfd2ebdadfc618b8ddeb3a1943ae75b98021b7eb42f7d30aee96b5ec37'
             'e4ebdd14096d177d264a7993dbd5df46463605ff45f783732c26d30b9caa53a7'
             '440c3e22d98ecf8c44dcedbe90bbb302da3a059e3fc3fba205d89f0eca329cbf'
             'e260e555b261aabab1e48786dd514eeea056e4402af7cfd4dfd1d32858441484')
diff --git a/libre/iceweasel/vendor.js b/libre/iceweasel/vendor.js
index 40d035cac..6123d0297 100644
--- a/libre/iceweasel/vendor.js
+++ b/libre/iceweasel/vendor.js
@@ -134,23 +134,6 @@ pref("network.http.speculative-parallel-limit", 0);
 //pref("security.ssl3.rsa_seed_sha", true);
 //pref("security.OCSP.enabled", 1);
 //pref("security.OCSP.require", true);
-//Disable unnecessary protocols
-//pref("security.ssl3.rsa_rc4_128_sha", false);
-//pref("security.ssl3.rsa_rc4_128_md5", false);
-//pref("security.ssl3.rsa_des_ede3_sha", false);
-//pref("security.ssl3.ecdhe_ecdsa_rc4_128_sha", false);
-//pref("security.ssl3.ecdhe_rsa_rc4_128_sha", false);
-// https://directory.fsf.org/wiki/Disable_DHE
-// Avoid logjam attack
-pref("security.ssl3.dhe_rsa_aes_128_sha", false);
-pref("security.ssl3.dhe_rsa_aes_256_sha", false);
-pref("security.ssl3.dhe_dss_aes_128_sha", false);
-pref("security.ssl3.dhe_rsa_des_ede3_sha", false);
-//Optional
-//Perfect forward secrecy
-// pref("security.ssl3.rsa_aes_256_sha", false);
-//Force TLS 1.2
-// pref("security.tls.version.min", 3);
 
 // Disable channel updates
 pref("app.update.enabled", false);
-- 
cgit v1.2.3