[tor-bugs] #18042 [Tor Browser]: Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Jan 20 11:50:41 UTC 2016
#18042: Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45
------------------------------------+--------------------------
Reporter: gk | Owner: tbb-team
Type: task | Status: new
Priority: High | Milestone:
Component: Tor Browser | Version:
Severity: Major | Resolution:
Keywords: tbb-security, ff45-esr | Actual Points:
Parent ID: | Points:
Sponsor: |
------------------------------------+--------------------------
Comment (by gk):
FWIW: This is basically done by setting
`security.pki.sha1_enforcement_level` properly. See:
https://bugzilla.mozilla.org/show_bug.cgi?id=1236975 for reverting the
SHA-1 blocking and https://bugzilla.mozilla.org/show_bug.cgi?id=942515 for
the implementation.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18042#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list