Closed
Bug 53198
Opened 25 years ago
Closed 25 years ago
Mac-Need UI for disabling TLS
Categories
(Core Graveyard :: Security: UI, defect, P3)
Tracking
(Not tracked)
VERIFIED
FIXED
People
(Reporter: junruh, Assigned: ddrinan0264)
References
()
Details
(Whiteboard: [rtm++])
Attachments
(1 file)
|
1.15 KB,
patch
|
Details | Diff | Splinter Review |
We need a way to disable TLS in the Security Manager UI. The above URL can be
reached if TLS is disabled.
|
Assignee | |
Comment 2•25 years ago
|
||
|
|
Assignee | |
Comment 3•25 years ago
|
||
Javi,
Please review my patch to psm-glue to pass the TLS pref to PSM.
|
|
||
Comment 4•25 years ago
|
||
patch is good. r=javi
|
|
||
Comment 6•25 years ago
|
||
PDT would like an explanation of what user-level feature is broken if we don't
take this patch. We're really focused on crash/data loss bugs right now.
|
|
||
Comment 8•25 years ago
|
||
There are some SSL servers out there that have a non-compliant implementation of
TLS. Suddenly, when a user who could go to the server before when upgrading to
N6 will not be able to access the site because PSM tries to negotiate using the
latest version of the protocol but the server does not correctly implement the
detection which is intended to prevent a version rollback attack. By adding
this UI, the user can then go and talk to their bank or what not for the time
being. Without this UI, N6 will not work at all with all of the non-compliant
servers out there. Adding this UI at least gives N6 the possibility of
revertingto an earlier version of SSL that will work with those sites.
|
|
||
Comment 9•25 years ago
|
||
This patch looks reasonable other than two nits: (a) looks like tabs instead of
spaces at least in one place; and (b) prefer pre-increment over post- except
where idiom demands (e.g., in idiomatic character-copying loops).
My only other problem in this review is that, though the patch itself is small
and reasonable ... it's difficult to see what ramifications it has that I need
to be aware of. Who is the client of this pref; now that it is in place, where
will the behavior change?
|
|
||
Comment 10•25 years ago
|
||
I see now, this preference is exploited by the code in bug #53810. Good. Fix
the tabs (if that's what your formatting problem is); I'd _like_ you to change
the post-increment to a pre-increment (and make this habit). After that, sr=scc.
|
|
Assignee | |
Comment 11•25 years ago
|
||
Made the changes Scott Collins recommended and marking [rtm+].
Whiteboard: [rtm+ need info] → [rtm+]
|
|
Reporter | |
Comment 13•25 years ago
|
||
Fixed. The UI is functional in the PSM 1.3 10/12 server on Win98. I can visit
the above URL when TLS is turned off. Will verify on all platforms when the
ability to turn off TLS in the Security Manager UI is in the commercial branch
builds.
Status: NEW → RESOLVED
Closed: 25 years ago
Resolution: --- → FIXED
|
|
Reporter | |
Comment 14•25 years ago
|
||
Verified on Win98 and Linux trunk 10/18 builds. Will verify on branch builds
later today. Verifying on Mac is blocked by bug 57081.
|
|
Reporter | |
Comment 15•25 years ago
|
||
Verified on Win98 and Linux branch 10/18 builds. Setting OS to Mac.
Keywords: vbranch
OS: All → MacOS X
Hardware: All → Macintosh
Summary: Need UI for disabling TLS → Mac-Need UI for disabling TLS
|
|
Reporter | |
Comment 16•25 years ago
|
||
Verified in the 10/29 branch commercial build.
Status: RESOLVED → VERIFIED
|
|
Reporter | |
Comment 17•24 years ago
|
||
Mass changing Security:Crypto to PSM
Component: Security: Crypto → Client Library
Product: Browser → PSM
Version: other → 2.1
|
|
Reporter | |
Comment 18•24 years ago
|
||
Mass changing Security:Crypto to PSM
|
||
Updated•9 years ago
|
Product: Core → Core Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•