Hi Security team,

I have 2 questions which I would be grateful if you can help.

I have seen various posts mentioning that after 1 of January 2017, browsers
will stop support of SHA1 signed CAs. I am looking into a way to identify
which WEB sites will not work until new certificate is applied and
demonstrate that after change it will work. I know that can be done via
checking the issued CA. Is there a way using a Firefox to replicate the
behavior/block prior to that date?

Second, I would like to ask if a user has option to permit if required, for
example using "security.pki.sha1_enforcement_level"

Kind Regards,
Kostas Tsimaris
dev-security-policy mailing list

Reply via email to