I was just reading an article on techcrunch.com that FireFox now supports the new TLS 1.3 upgrade. https://techcrunch.com/2018/08/13/firefox-now-supports-the-newest-internet-security-protocol/
I could not find the security settings in P M Preferencesa and I assume that is because I stopped using Commander and no longer have it as an extension.
Will P M be implementing the new TLS protocol or has this already been done?
TLS 1.3 and P M
-
TwoTankAmin
- Keeps coming back
- Posts: 777
- Joined: 2014-07-23, 13:56
- Location: New York
TLS 1.3 and P M
“No one has ever become poor by giving.” Anonymous
“Everyone is entitled to his own opinion, but not to his own facts.”" Daniel Patrick Moynihan
"The good thing about science is that it’s true whether or not you believe in it." Neil DeGrasse Tyson
“Everyone is entitled to his own opinion, but not to his own facts.”" Daniel Patrick Moynihan
"The good thing about science is that it’s true whether or not you believe in it." Neil DeGrasse Tyson
Re: TLS 1.3 and P M
Already enabled by default in v28:
https://github.com/MoonchildProductions ... 215d3c661/
(security.tls.version.max = 4)
https://github.com/MoonchildProductions ... 215d3c661/
(security.tls.version.max = 4)
Last edited by Tomaso on 2018-08-14, 14:57, edited 2 times in total.
-
TwoTankAmin
- Keeps coming back
- Posts: 777
- Joined: 2014-07-23, 13:56
- Location: New York
Re: TLS 1.3 and P M
I am not using ver 28, I am using 27.9.4 and will likely wait a a while after the release of 28 before I give it a try. I usually wait on any software major upgrade for a month or more for the initial bugs to be discover4ed and fixed. With Windows the wait was more like years.
Does this mean the newest TLS is not be available for P M versions lower than 28? I see the "security.tls.version.max" in about:config. It is set to 3. Can it be set to 4 and therefore be using TLS 1.3 in P M 27.9.4?
Does this mean the newest TLS is not be available for P M versions lower than 28? I see the "security.tls.version.max" in about:config. It is set to 3. Can it be set to 4 and therefore be using TLS 1.3 in P M 27.9.4?
“No one has ever become poor by giving.” Anonymous
“Everyone is entitled to his own opinion, but not to his own facts.”" Daniel Patrick Moynihan
"The good thing about science is that it’s true whether or not you believe in it." Neil DeGrasse Tyson
“Everyone is entitled to his own opinion, but not to his own facts.”" Daniel Patrick Moynihan
"The good thing about science is that it’s true whether or not you believe in it." Neil DeGrasse Tyson
Re: TLS 1.3 and P M
Correct.Does this mean the newest TLS is not be available for P M versions lower than 28?
Yes, except that you are using an older draft then the current draft/release, so in that respect, PM 27 will still fail on sites that look for the latest draft/release (such as, https://tls13.crypto.mozilla.org/).I see the "security.tls.version.max" in about:config. It is set to 3. Can it be set to 4 and therefore be using TLS 1.3 in P M 27.9.4?
In any case, in most cases, there should be fallbacks. Additionally it will take sites time to update to 1.3 (some have already), so it's not like there is an immediate need for "1.3 *now*"!
Last edited by therube on 2018-08-14, 18:47, edited 2 times in total.
Re: TLS 1.3 and P M
TLS 1.2 is perfectly safe and secure to use for a long time to come.
I would not worry about requiring TLS 1.3 anywhere for a long while either.
I would not worry about requiring TLS 1.3 anywhere for a long while either.
"Sometimes, the best way to get what you want is to be a good person." -- Louis Rossmann
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite