Comment Re:They disabled insecure TLS version fallback (Score 0) 156
I think he means this.
This one doesn't seem so bad, but the way Mozilla has handled SSLv3 deprecation has been a disaster.
I'm not going to go buy a new $900 PDU because the one I have only supports SSLv3 and not TLS1.2. Maybe I should switch it back to plain HTTP "for security"? Sheesh. Obviously a whitelist per-site/device would have been a smart approach, but that's not easy.
Secure isn't easy and security isn't a setting, it's a process and an ecosystem. Pisser when they weaken security overall just to avoid the off chance that a stupid person will erroneously blame Mozilla.