gecko-dev/extensions/help/resources/locale/en-US/ssl_help.html

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<title>Privacy &amp; Security Preferences - SSL</title>

<link rel="stylesheet" href="chrome://help/locale/content_style.css" type="text/css">

</head>

<body bgcolor="white">


<a NAME="ssl_settings"></a>
<hr><h1>SSL Settings</h1>
<p>This section describes how to set your SSL preferences and ciphers.  
<p>&nbsp;</p>

<table cellpadding=4 cellspacing=2 bgcolor="#cccccc" Width=324>
<tr>
<td class="inthissections">
<p>In this section:</p>
<p><a href="#ssl_prefs">Privacy &amp; Security Preferences - SSL</a></p>
<p><a href="#cipher_help">Edit Ciphers</a></p>
</td>
</tr>
</table>
<p>&nbsp;</p>





<a NAME="ssl_prefs"></a>
<a NAME="SSLIDX"></a>
<hr><h2>Privacy &amp; Security Preferences - SSL</h2>
<p>This section describes how to use the SSL preferences panel. If you are not already viewing the panel, follow these steps:

<ol>
	<li>Open the Edit menu and choose Preferences.
	<li>Under the Privacy &amp; Security category, choose SSL. (If no subcategories are visible, double-click the category to expand the list.)
</ol>



<p>&nbsp;</p>
<a NAME="SSL_Protocol_Versions"></a>
<h3>SSL Protocol Versions</h3>


<p>The Secure Sockets Layer (SSL) protocol defines rules governing mutual authentication 
between a web site and browser software and the encryption of information that flows 
between them. The Transport Layer Security (TLS) protocol is an IETF standard based on 
SSL. TLS 1.0 can be thought of as SSL 3.1.

<p>You should normally leave these three checkboxes selected to ensure that both older and newer web servers can work with the browser:
<ul>
	<li><b>Enable SSL version 2:</b> Allows older web servers to work with the browser.
	<li><b>Enable SSL version 3:</b> Allows newer web servers to work with the browser.
	<li><b>Enable TLS</b>. Allows web servers that support TLS to take advantage of it.</li>
</ul>
<p><b>Important note re TLS:</b> Some servers that do not implement SSL correctly cannot negotiate the SSL handshake with client software (such as the browser) that supports TLS. Such servers are known as "TLS intolerant."
<p>When the Enable TLS option in the SSL preferences panel is selected, the browser attempts to use the TLS protocol when making secure connections with a server. If that connection fails because the server is TLS intolerant, the browser will fall back to using SSL 3.0.



<p>&nbsp;</p>
<a NAME="SSL_Warnings"></a>
<h3>SSL Warnings</h3>

<p>It's easy to tell when the web site you are viewing is using an encrypted connection. 
If the connection is encrypted, the lock icon in the lower-right corner of the Navigator 
window is locked. If the connection is not encrypted, the lock icon is unlocked.</P> 

<p>For many people, the lock icon provides sufficient information about a page's 
encryption status. If you want additional warnings, you can select one or more of 
the warning checkboxes in the SSL preferences panel. Think 
carefully about whether you want such warnings, since they can be annoying.

<p>To activate any of these Navigator warnings, select the corresponding checkbox:
</P>

<ul>
	<LI><b>Loading a page that supports encryption.</b> Select this warning if you want to be reminded whenever you are loading a page that supports encryption.
	<LI><b>Loading a page that uses low-grade encryption.</b> Select this warning if you want to be reminded whenever you are loading a page that supports low-grade encryption. (Low-grade encryption is the weakest encryption available, using 40-bit keys.) 
	<LI><b>Leaving a page that supports encryption.</b> Select this warning if you want to be reminded whenever you are leaving a page that supports encryption for one that does not.
	<LI><b>Sending form data from an unencrypted page to an unencrypted page.</b> Select this warning if you want to be reminded whenever you are submitting data over an unencrypted connection. <b>You may want to select this option even if you don't want any of the others, so you don't inadvertently send sensitive 
information that isn't encrypted. </b>If you send unencrypted information over the Internet, it can easily be intercepted by other people.
	<LI><b>Viewing a page with an encrypted/unencrypted mix.</b> Select this warning if you want to be alerted whenever you are viewing a page that includes any information that's not encrypted. 
</ul>

<p>For short definitions, click <a href="glossary.html#authentication">authentication</a>, <a href="glossary.html#encryption">encryption</a>, or <a href="glossary.html#certificate">certificate</a>.</P>


<a NAME="cipher_help"></a>
<a NAME="SSL_ciphersIDX"></a>
<a NAME="cipherSDX"></a>
<hr><h2>Edit Ciphers</h2>
<p>This section describes how to use the Edit Ciphers dialog box. If you're not already viewing it, follow these steps:

<ol>
	<li>Open the Edit menu and choose Preferences.
	<li>Under the Privacy &amp; Security category, choose SSL. (If no subcategories are visible, double-click the category to expand the list.)
	<li>Click the Edit Ciphers button.
</ol>

<p><b>help text to come</b>

<p>
[&nbsp;<A HREF="#ssl_first">Return to beginning of SSL section</A>&nbsp;]
</p>

<hr>
<p><i>26 March 2002</i></body>
</html>