s83/user.js
1
0
Fork 0
mirror of https://github.com/arkenfox/user.js.git synced 2025-05-08 01:43:51 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Option for OCSP Must-Staple

Browse source
This commit is contained in:
Exodion 2017-11-13 22:44:55 +03:00 committed by GitHub
parent e080becba5
commit aca03265d5
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
user.js
View file

@ -745,6 +745,9 @@ user_pref("security.OCSP.enabled", 1);
* [WARNING] Since FF44 the default is false. If set to true, this will cause some site breakage
* [1] https://blog.mozilla.org/security/2013/07/29/ocsp-stapling-in-firefox/ ***/
user_pref("security.OCSP.require", true);
/* 1213: require a stapled OCSP response from the CA
* [1] https://blog.mozilla.org/security/2015/11/23/improving-revocation-ocsp-must-staple-and-short-lived-certificates/ ***/
user_pref("security.ssl.enable_ocsp_must_staple", true);
/** CERTS / HSTS (HTTP Strict Transport Security) / HPKP (HTTP Public Key Pinning) ***/
/* 1220: disable Windows 8.1's Microsoft Family Safety cert [WINDOWS] (FF50+)
* 0=disable detecting Family Safety mode and importing the root