"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "platform/netwerk/base/security-prefs.js" between
palemoon-29.4.1-source.tar.xz and palemoon-29.4.2-source.tar.xz

About: Pale Moon is a full-featured, optimized browser derived from the code behind the Firefox browser (shares the Unified XUL Platform (UXP)). Source code. Hint (Sept. 15, 2021): The separate application source code tarballs seems no longer available but only tarballs bundled with the underlying UXP platform code (see here).

security-prefs.js  (palemoon-29.4.1-source.tar.xz):security-prefs.js  (palemoon-29.4.2-source.tar.xz)
skipping to change at line 123 skipping to change at line 123
// 1: Only collect telemetry. CT qualification checks are not performed. // 1: Only collect telemetry. CT qualification checks are not performed.
pref("security.pki.certificate_transparency.mode", 0); pref("security.pki.certificate_transparency.mode", 0);
pref("security.webauth.u2f", false); pref("security.webauth.u2f", false);
pref("security.webauth.u2f_enable_softtoken", false); pref("security.webauth.u2f_enable_softtoken", false);
pref("security.webauth.u2f_enable_usbtoken", false); pref("security.webauth.u2f_enable_usbtoken", false);
// OCSP must-staple // OCSP must-staple
pref("security.ssl.enable_ocsp_must_staple", true); pref("security.ssl.enable_ocsp_must_staple", true);
// Enable TLS 1.3 compatmode version for bad middleware boxes?
// This is a holdover from the later draft specs and SHOULD NOT be enabled by
// default. ONLY use this when you explicitly need it. You have been warned!
// Restart required.
pref("security.ssl.enable_tls13_compat_mode", false);
// If a request is mixed-content, send an HSTS priming request to attempt to // If a request is mixed-content, send an HSTS priming request to attempt to
// see if it is available over HTTPS. // see if it is available over HTTPS.
pref("security.mixed_content.send_hsts_priming", true); pref("security.mixed_content.send_hsts_priming", true);
#ifdef RELEASE_OR_BETA #ifdef RELEASE_OR_BETA
// Don't change the order of evaluation of mixed-content and HSTS upgrades // Don't change the order of evaluation of mixed-content and HSTS upgrades
pref("security.mixed_content.use_hsts", false); pref("security.mixed_content.use_hsts", false);
#else #else
// Change the order of evaluation so HSTS upgrades happen before // Change the order of evaluation so HSTS upgrades happen before
// mixed-content blocking // mixed-content blocking
pref("security.mixed_content.use_hsts", true); pref("security.mixed_content.use_hsts", true);
 End of changes. 1 change blocks. 
0 lines changed or deleted 6 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)