This patch should remove SHA1/ECDSA from TLS 1.2. https://clienttest.ssllabs.com:8443/ssltest/viewMyClient.html. If you re-enable ECDSA CBC ciphers on https://ddl-warez.to/robots.txt (which supports ECDHE-ECDSA-* with TLS 1.0 to 1.3): * ECDSA-SHA1 signature scheme is used for TLS 1.0 + 1.1. * If we disable ECDSA AEAD ciphers and network.http.spdy.enabled, we use ECDSA-P256-SHA256 for TLS 1.2.
Bug 1600437 Comment 5 Edit History
Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.
This patch should remove SHA1/ECDSA from TLS 1.2. https://clienttest.ssllabs.com:8443/ssltest/viewMyClient.html. If you re-enable ECDSA CBC ciphers on https://ddl-warez.to/robots.txt (which supports ECDHE-ECDSA-* with TLS 1.0 to 1.3): * ECDSA-SHA1 signature scheme is used for TLS 1.0 + 1.1. * ECDSA-P256-SHA256 is used for TLS 1.2.
This patch should remove SHA1/ECDSA from TLS 1.2. https://clienttest.ssllabs.com:8443/ssltest/viewMyClient.html.