Hello Guys, I would step in to your discussion if you don't mind. My question is very similar to the original one but in regards to internal usage of SHA-1 signed certs. We are running large number of network devs acting as a proxy and users need to authenticate in order to access some of the applications. It's an internal closed environment and all the devices are using self-signed certificates. Will something change for us when Mozilla disabled SHA-1 certs?
As far as I could read there is a plan to have an option to override this security feature and access website anyway. Of course enabling SHA-1 in about:config is also an option but we need to prepare our users for that. Thank you very much for any qualified answer. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy