Hi Security team, I have 2 questions which I would be grateful if you can help.
I have seen various posts mentioning that after 1 of January 2017, browsers will stop support of SHA1 signed CAs. I am looking into a way to identify which WEB sites will not work until new certificate is applied and demonstrate that after change it will work. I know that can be done via checking the issued CA. Is there a way using a Firefox to replicate the behavior/block prior to that date? Second, I would like to ask if a user has option to permit if required, for example using "security.pki.sha1_enforcement_level" Kind Regards, Kostas Tsimaris _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy