[tor-bugs] #12766 [meek]: Disable TLSv1.1 and TLSv1.2 in the Firefox helper
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Aug 1 23:58:26 UTC 2014
#12766: Disable TLSv1.1 and TLSv1.2 in the Firefox helper
--------------------+---------------------
Reporter: dcf | Owner: dcf
Type: defect | Status: new
Priority: normal | Milestone:
Component: meek | Version:
Keywords: | Actual Points:
Parent ID: | Points:
--------------------+---------------------
With #11253, Tor Browser's Firefox config has TLSv1.1 and TLSv1.2 turned
on. If meek-http-helper (browser TLS camouflage) sends Firefox 24
ciphersuites but uses TLSv1.1 or TLSv1.2, then it will look weird, because
as I understand it, mainline Firefox 24 has TLSv1.1 and TLSv1.2 disabled.
([[doc/meek#Sampleclienthellos]] corroborates that ordinary Firefox 24
uses TLSv1.0 when connecting to Google.)
We also need to remember to turn TLSv1.1 and TLSv1.2 back on when they get
enabled in the next ESR...
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12766>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list