On Tue, 2014-10-21 at 01:40 +0200, Kai Engert wrote: > On Thu, 2014-10-16 at 20:51 +0200, Kai Engert wrote: > > Do you claim that Firefox 34 will continue to fall back to SSL 3 when > > necessary? > > Yes. If I understand correctly, it seems that Firefox indeed still falls > back to SSL3, even with SSL3 disabled.
I'm sorry if I got this wrong, inspired by Florian's claim (still falling back) and my quick reading of the code. Let's get this clarified. My reading of the source indicated that adjustForTLSIntolerance would fall back until it reaches SSL3. However, trying to connect to a SSL3-only server like https://bod.bodmillenium.com using Firefox 33 and 36 fails (with min.tls set to 1). So hopefully I was wrong. Thanks Kai -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
