Quick-Tip: Temporarily deactivate SSL3 barrier in Firefox

Tuesday, January 20, 2015 4:54 PM UTC

Today a customer ran into the well known TLS/SSL3 problem with one of his Domino servers. The used SSL certificate is not up-to-date and also the server didn't have the interim fix installed (http://www-933.ibm.com/support/fixcentral/...). As the customer is using Firefox only (and this with the latest version available) he couldn't open the application anymore due to the unsupported certificate.

While we are upgrading the server and re-issueing the certificate I provided him with a temporary workaround to access the application without the security check enabled.

Note: this is NOT a real solution but only a temporary way to keep your business going! DO NOT use this in production or in genral!

In Firefox, open the URL 

about:config

and search for the term

security.tls

Open the entry called

security.tls.version.min

and set the value from "1" to "0". This allows you to open web pages that don't have an updated SSL certificate installed.

YMMV





Latest comments to this post

mariakatosvich wrote on 29.08.2016, 08:03

Current Firefox no longer have a user interface setting to disable TLS or SSL3, but you can make the change on the about:config page. Future Firefox versions will support higher TLS versions (1.1 and 1.2) and both SSL3 and TLS 1.0 are enabled by default.
You can set the security.tls.version.min and security.tls.version.max prefs to 0 to disable TLS (0 means SSL3)

Thanks

sky uk customer services number

 Link to this comment

Leave a comment right here