Mozilla company released version corrective Firefox 43.0.4. It unlock the certificates that are issued after January 1, 2016, and their signatures are generated using SHA-1 hash.
As it turned out, blocking certificates led to the fact that the websites accessible via HTTPS, refused to open. The reason was problems with established local MITM-proxy.
This, however, means that support SHA-1 will be continued.
It should be noted that a number of large companies opposed the SHA-1 block. They propose to leave this hash, but will issue certificates only to centers that have received the certificate based on the SHA256. Among such companies Facebook, Twitter and Cloud. Others, by contrast, believe that the SHA-1 hashing out of date and needs to be replaced. According to the latter, it's security vulnerabilities, allowing an average of 100 thousand dollars to find the right certificate.
But such hack is possible only for certain tasks.
Related Products :
|