Yes, I have ensured that the parameter "security.enable_ssl2" is indeed set to "false" in "about:config".
Wan-Teh Chang wrote: > Hi Suresh, > > Please type "about:config" in the location bar. > > In the Filter field, type "security.enable_ssl2". What is the value? > It should be "false". > > I believe this is the relevant source code in Firefox: > > http://mxr.mozilla.org/mozilla-central/source/security/manager/ssl/src/nsNSSComponent.cpp#1596 > > 1593 PRBool enabled; > 1594 mPrefBranch->GetBoolPref("security.enable_ssl2", &enabled); > 1595 SSL_OptionSetDefault(SSL_ENABLE_SSL2, enabled); > 1596 SSL_OptionSetDefault(SSL_V2_COMPATIBLE_HELLO, enabled); > <=== THIS LINE > 1597 mPrefBranch->GetBoolPref("security.enable_ssl3", &enabled); > 1598 SSL_OptionSetDefault(SSL_ENABLE_SSL3, enabled); > 1599 mPrefBranch->GetBoolPref("security.enable_tls", &enabled); > 1600 SSL_OptionSetDefault(SSL_ENABLE_TLS, enabled); > > So, we use SSL v2 compatible client hello if security.enable_ssl2 is enabled. > > Wan-Teh > _______________________________________________ > dev-tech-crypto mailing list > dev-tech-crypto@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-tech-crypto > _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
