Skip to content
GitLab
Projects Groups Topics Snippets
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
  • Trac Trac
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Issues 246
    • Issues 246
    • List
    • Boards
    • Service Desk
    • Milestones
  • Monitor
    • Monitor
    • Metrics
    • Incidents
  • Analytics
    • Analytics
    • Value stream
  • Wiki
    • Wiki
  • Activity
  • Create a new issue
  • Issue Boards
Collapse sidebar
  • Legacy
  • TracTrac
  • Issues
  • #11253
Closed
Open
Issue created Mar 20, 2014 by Trac@tracbot

Turn on TLS 1.1 and 1.2 in TorBrowser

TLS 1.1 and TLS 1.2 support is already implemented in FF 24 ESR, but for some unknown reason Mozilla haven't truned it on by default, even though TLS 1.1 and 1.2 is supported by Chrome, IE, Opera, and FF stable (the non-ESR version). Thru about:config, search for security.tls.version.max and replace 1 with 3 and that's it. Note we're not disabling SSL 3.0 so no sites at all will be broken. The reasons and benefits for enaling TLS 1.1 and 1.2 are obvious and self-evident, including -higher security for encrypted traffic to websites leaving Tor exit nodes -Making the said traffic ubove resistant to cryptanalysis and sniffing There are no draw backs from this upgrade because SSL 3.0 will not be disbaled and hence websites not supporting TLS 1.1 and 1.2 will not be broken and will function as normal.

Trac:
Username: YunoTLS

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
Time tracking