DHE cipher suites are no longer supported

Published:

Categories: Privacy & Security

Releases: Firefox 78, Firefox 78 ESR

Description

Firefox 79 has removed the support for the following DHE cipher suites, because those protocols are considered too weak:

  • TLS_DHE_RSA_WITH_AES_128_CBC_SHA
  • TLS_DHE_RSA_WITH_AES_256_CBC_SHA

Given that other major browsers have already dropped it, the compatibility risk should be very low.

The DHE cipher support in WebRTC was removed with Firefox 65.

Update: This change has been pushed forward from Firefox 79 to 78.

References