|
|
How Safe or Unsafe is it to use FireFox 3.6 at a HTTPS Web Page?
Hi,
I have been using FF3.6 for years in my Win98 partition (dual boot PCs) after installing KernelEx. Most of my web browsing involves looking for information. Once in a while I need to "log in" (https page, enter email address and password) at a site. Due to recent reports of a HTTPS vulnerability, is it unsafe (risky) to "log in" using FF3.6? Thank You in advance, John |
How Safe or Unsafe is it to use FireFox 3.6 at a HTTPS Web Page?
I guess you mean the POODLE vulnerability of SSL3 as thats had the most
press lately. You can manually disable SSL3 in Firefox's settings window (somewhere in Advanced settings under a specific tab from memory - the PC I'm sending this from can't even handle FF 3.6!). FF 3.6 (actually all Firefox versions according to Wikipedia (http://en.wikipedia.org/wiki/Transport_Layer_Security)) can deal in TLS 1.0 which supercedes SSL3 and is secure according to Wikipedia (though you might want to look up the full details yourself if you want). SNIP Hi Computer Nerd, I disabled SSL3.0 in Advance settings (FF3.6). TLS 1.0 is enabled. BTW, Some time ago, I switched from FF2.0 to FF3.6 because I got tired of the frequent "Stop Script" prompts. Note: It happens once in a while with FF3.6, but it isn't a nuisance. Again Thanks, John |
How Safe or Unsafe is it to use FireFox 3.6 at a HTTPS Web Page?
|
How Safe or Unsafe is it to use FireFox 3.6 at a HTTPS Web Page?
98 G_u_y wrote:
When surfing the web I regularly get nuisance messages about security certificates that I ignore (I think there's a way to update Win98 root certificates but I haven't bothered to do that). I also think I get a lot of these messages because I have so many HOSTS file entries that point to bull**** 3'rd party entities that have wormed their way into many web sites for tracking and marketing purposes. Actually I get those messages running FF 2 on Linux as well, though I don't think I ever tried hard to fix it either. My regular sites don't seem to trigger them, usually just the script-filled monstrosities that don't work well with FF2 for a range of reasons. I have hardly any HOSTS file entries, mainly just to block rubiconproject because it seemed to be slowing things down, but I think its getting through anyway. -- __ __ #_ |\| | _# |
| All times are GMT +1. The time now is 10:02 AM. |
Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Win98Banter.com