Skip to content
GitLab
  • Explore
  • Sign in
  • The Tor Project
  • Applications
  • Tor BrowserTor Browser
  • Issues
  • #40183

Consider disabling TLS ciphersuites containing SHA-1

TLS 1.0 and 1.1 are now disabled upstream (see #11154 (closed)), but TLS 1.2 contains ciphers suites using SHA-1 (_SHA). We can think about disabling those due the known weakness of SHA-1.

Assignee
Assign to
Time tracking