[tor-bugs] #18042 [Tor Browser]: Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Jan 20 11:50:41 UTC 2016


#18042: Make sure certificates signed with SHA-1 are not accepted anymore in ESR 45
------------------------------------+--------------------------
 Reporter:  gk                      |          Owner:  tbb-team
     Type:  task                    |         Status:  new
 Priority:  High                    |      Milestone:
Component:  Tor Browser             |        Version:
 Severity:  Major                   |     Resolution:
 Keywords:  tbb-security, ff45-esr  |  Actual Points:
Parent ID:                          |         Points:
  Sponsor:                          |
------------------------------------+--------------------------

Comment (by gk):

 FWIW: This is basically done by setting
 `security.pki.sha1_enforcement_level` properly. See:
 https://bugzilla.mozilla.org/show_bug.cgi?id=1236975 for reverting the
 SHA-1 blocking and https://bugzilla.mozilla.org/show_bug.cgi?id=942515 for
 the implementation.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18042#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list