On Thu, 2014-10-16 at 20:51 +0200, Kai Engert wrote: > Do you claim that Firefox 34 will continue to fall back to SSL 3 when > necessary?
Yes. If I understand correctly, it seems that Firefox indeed still falls back to SSL3, even with SSL3 disabled. I found https://bugzilla.mozilla.org/show_bug.cgi?id=1083058 which intends to implement a preference to configure the oldest allowed protocol version to fallback to, with a propose mininum of 1 (TLS1). Kai -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
