1
edit
Changes
→security.ssl.require_safe_negotiation
Eventually, if enough sites have been upgraded to the new protocol versions, this preference will be set to "true" by default.
== Further ideas ==
''security.ssl.treat_unsafe_renegotiation_as_broken'' and ''security.ssl.treat_unsafe_renegotiation_as_broken_hosts'' as per [https://bugzilla.mozilla.org/show_bug.cgi?id=554594#c2]