On Saturday 30 April 2016 09:05:27 Martin Thomson wrote: > At the TLS layer, you can disable all suites that require ECC.
I haven't tested it, but I don't think that will stop NSS trusting RSA certificates signed by ECC CAs. > On Sat, Apr 30, 2016 at 4:40 AM, Franziskus Kiefer <[email protected]> wrote: > > there's no runtime option but you can disable it at compile time > > with > > NSS_DISABLE_ECC, see [1] > > > > [1] > > https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Refere > > nce/NSS_environment_variables> > > On Fri, Apr 29, 2016 at 3:44 PM, jonetsu <[email protected]> wrote: > >> Hello, > >> > >> Is there a run-time option to disable all and every uses of > >> elliptical curves ? > >> > >> If not, is there a compile option ? > >> > >> Thanks. > >> > >> > >> > >> > >> -- > >> View this message in context: > >> http://mozilla.6506.n7.nabble.com/Disabling-all-uses-of-elliptical-> >> > >> curves-tp354147.html Sent from the Mozilla - Cryptography mailing > >> list archive at Nabble.com. -- > >> dev-tech-crypto mailing list > >> [email protected] > >> https://lists.mozilla.org/listinfo/dev-tech-crypto > > > > -- > > dev-tech-crypto mailing list > > [email protected] > > https://lists.mozilla.org/listinfo/dev-tech-crypto -- Regards, Hubert Kario Senior Quality Engineer, QE BaseOS Security team Web: www.cz.redhat.com Red Hat Czech s.r.o., Purkyňova 99/71, 612 45, Brno, Czech Republic
signature.asc
Description: This is a digitally signed message part.
-- dev-tech-crypto mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-crypto
