tracking: disable DNS-over-HTTPS and the "Normandy" service.
[firefox-user-prefs.git] / certificates
1 /* Certificates and trust */
2
3
4 /* Disable OCSP, which checks for certificate revocation by sending
5 * your browser history to a third-party. I think this leaves stapling
6 * enabled, which is what we should be using anyway. Not that I believe
7 * in the CA infrastructure to begin with!
8 *
9 * WARNING: of all the preferences set in this file, this one is likely
10 * the most controversial.
11 *
12 * References:
13 *
14 * 1. https://en.wikipedia.org/wiki/Online_Certificate_Status_Protocol
15 * 2. https://blog.mozilla.org/security/2013/07/29/ocsp-stapling-in-firefox/
16 *
17 */
18 user_pref("security.OCSP.enabled", 0);
19