Mozilla this week released Firefox 74 to the stable channel with several security improvements, including patches, a new add-ons policy, improved privacy, and versions 1.0 and 1.1 of the Transport Layer Security (TLS) protocol disabled by default.
With TLS 1.0 and TLS 1.1 considered vulnerable to various types of attacks, including BEAST, CRIME and POODLE, the Internet organization last month announced plans to disable them in its popular browser and allow only connections made using TLS 1.2 and TLS 1.3.
The move should have no impact on websites that support TLS 1.2 and up, but will result in an error message being displayed when the newer protocol iterations are not supported. An override button on the error page will provide users with the option to fallback to TLS 1.0 or TLS 1.1.
The deprecation of older TLS iterations was initially announced a couple of years ago, but some website administrators have yet to upgrade to newer versions of the protocol. The change introduced in Firefox 74 is expected to encourage them to improve the security of their sites and users.
With the new release, Mozilla improved the browser’s login management capabilities and also enhanced the privacy of users’ web voice and video calls through support for mDNS ICE by cloaking IP addresses in certain WebRTC scenarios.
Furthermore, the browser now allows users to remove add-ons that have been installed by third-party apps and no longer allows applications to install add-ons. Only users are allowed to do so.
Firefox 74 includes patches f ..
Support the originator by clicking the read the rest link below.
