From: Michael Kaply <345868+mkaply@users.noreply.github.com>
Date: Thu, 23 Apr 2020 20:56:39 +0000 (-0500)
Subject: Merge pull request #585 from mozilla/DisabledCiphers
X-Git-Tag: v1.16~3
X-Git-Url: https://git.p6c8.net/policy-templates.git/commitdiff_plain/426f88e4358468dbaa352171dbc1ff4ff336771f?hp=8110d9989363ecc56ba6870635ededf054aa023b
Merge pull request #585 from mozilla/DisabledCiphers
Initial checkin of new policy DisabledCiphers
---
diff --git a/README.md b/README.md
index 7152523..089b93c 100644
--- a/README.md
+++ b/README.md
@@ -23,6 +23,7 @@ Policies can be specified using the Group Policy templates on Windows (https://g
| **[`DisableMasterPasswordCreation`](#disablemasterpasswordcreation)** | Remove the master password functionality.
| **[`DisableAppUpdate`](#disableappupdate)** | Turn off application updates.
| **[`DisableBuiltinPDFViewer`](#disablebuiltinpdfviewer)** | Disable the built in PDF viewer.
+| **[`DisabledCiphers`](#disabledciphers)** | Disable ciphers.
| **[`DisableDefaultBrowserAgent`](#disabledefaultbrowseragent)** | Prevent the default browser agent from taking any actions (Windows only).
| **[`DisableDeveloperTools`](#disabledevelopertools)** | Remove access to all developer tools.
| **[`DisableFeedbackCommands`](#disablefeedbackcommands)** | Disable the menus for reporting sites.
@@ -690,6 +691,69 @@ Software\Policies\Mozilla\Firefox\DisableBuiltinPDFViewer = 0x1 | 0x0
}
}
```
+### DisabledCiphers
+Disable specific cryptographic ciphers.
+
+**Compatibility:** Firefox 68.8, Firefox ESR 76\
+**CCK2 Equivalent:** N/A\
+**Preferences Affected:** N/A
+
+#### Windows (GPO)
+```
+Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_DHE_RSA_WITH_AES_128_CBC_SHA = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_DHE_RSA_WITH_AES_256_CBC_SHA = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_RSA_WITH_AES_128_CBC_SHA = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_RSA_WITH_AES_256_CBC_SHA = 0x1 | 0x0
+Software\Policies\Mozilla\Firefox\DisabledCiphers\TLS_RSA_WITH_3DES_EDE_CBC_SHA = 0x1 | 0x0
+```
+#### macOS
+```
+
+ DisabledCiphers
+
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
+ |
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
+ |
+ TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
+ |
+ TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
+ |
+ TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+ |
+ TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
+ |
+ TLS_RSA_WITH_AES_128_CBC_SHA
+ |
+ TLS_RSA_WITH_AES_256_CBC_SHA
+ |
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
+ |
+
+
+```
+#### policies.json
+```
+{
+ "policies": {
+ "DisabledCiphers" {
+ "TLS_DHE_RSA_WITH_AES_128_CBC_SHA": true | false,
+ "TLS_DHE_RSA_WITH_AES_256_CBC_SHA": true | false,
+ "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA": true | false,
+ "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA": true | false,
+ "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256": true | false,
+ "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256": true | false,
+ "TLS_RSA_WITH_AES_128_CBC_SHA": true | false,
+ "TLS_RSA_WITH_AES_256_CBC_SHA": true | false,
+ "TLS_RSA_WITH_3DES_EDE_CBC_SHA": true | false
+ }
+ }
+}
+```
### DisableDefaultBrowserAgent
Prevent the default browser agent from taking any actions. Only applicable to Windows; other platforms donât have the agent.
diff --git a/mac/org.mozilla.firefox.plist b/mac/org.mozilla.firefox.plist
index 3aa4b0f..17343d3 100644
--- a/mac/org.mozilla.firefox.plist
+++ b/mac/org.mozilla.firefox.plist
@@ -131,6 +131,27 @@
DisableBuiltinPDFViewer
+ DisabledCiphers
+
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
+
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
+
+ TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
+
+ TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
+
+ TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+
+ TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
+
+ TLS_RSA_WITH_AES_128_CBC_SHA
+
+ TLS_RSA_WITH_AES_256_CBC_SHA
+
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
+
+
DisableDeveloperTools
DisableFeedbackCommands
diff --git a/windows/de-DE/firefox.adml b/windows/de-DE/firefox.adml
index 9ca80fc..c9b7b18 100644
--- a/windows/de-DE/firefox.adml
+++ b/windows/de-DE/firefox.adml
@@ -45,6 +45,7 @@
Suche
Einstellungen
Benutzer-Benachrichtigungen
+ Disabled Ciphers
Erlaubte Seiten
Gesperrte Seiten
Automatisches Update
@@ -721,6 +722,42 @@ Wenn diese Richtlinie aktiviert oder nicht konfiguriert ist, werden Firefox-Funk
Wenn diese Richtlinieneinstellung deaktiviert ist, werden basierend darauf, was der Benutzer in die Adressleiste eingibt, keine Aktionen empfohlen.
Wenn diese Richtlinieneinstellung aktiviert oder nicht konfiguriert ist, werden Aktionen empfohlen, die darauf basieren, was der Benutzer in die Adressleiste eingibt.
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is enabled.
Wenn diese Richtlinieneinstellung aktiviert ist, ist die Einstellung auf true gesperrt. Wenn diese Richtlinieneinstellung deaktiviert ist, ist die Einstellung auf false gesperrt.
Für eine Beschreibung der Einstellung, siehe:
diff --git a/windows/en-US/firefox.adml b/windows/en-US/firefox.adml
index 6458473..7c5dae1 100644
--- a/windows/en-US/firefox.adml
+++ b/windows/en-US/firefox.adml
@@ -45,6 +45,7 @@
Search
Preferences
User Messaging
+ Disabled Ciphers
Allowed Sites
Blocked Sites
Application Autoupdate
@@ -723,6 +724,42 @@ If this policy is enabled or not configured, Firefox features wil be recommended
If this policy is disabled, actions will not be recommended based on what the user types in the URL bar.
If this policy is enabled or not configured, actions will be recommended based on what the user types in the URL bar.
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is enabled.
If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false.
For a description of the preference, see:
diff --git a/windows/es-ES/firefox.adml b/windows/es-ES/firefox.adml
index 5c9d896..9bed40a 100644
--- a/windows/es-ES/firefox.adml
+++ b/windows/es-ES/firefox.adml
@@ -45,6 +45,7 @@
Búsqueda
Preferencias
User Messaging
+ Disabled Ciphers
Sitios permitidos
Sitios bloqueados
Application Autoupdate
@@ -723,6 +724,42 @@ If this policy is enabled or not configured, Firefox features wil be recommended
If this policy is disabled, actions will not be recommended based on what the user types in the URL bar.
If this policy is enabled or not configured, actions will be recommended based on what the user types in the URL bar.
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is enabled.
Si esta polÃtica está habilitada, la preferencia se bloquea en true. Si esta polÃtica está deshabilitada, la preferencia está bloqueada en false.
Para una descripción de la preferencia, visite:
diff --git a/windows/firefox.admx b/windows/firefox.admx
index 6a007d9..77ed391 100644
--- a/windows/firefox.admx
+++ b/windows/firefox.admx
@@ -97,6 +97,9 @@
+
+
+
@@ -3430,5 +3433,95 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/windows/fr-FR/firefox.adml b/windows/fr-FR/firefox.adml
index a684fbc..fcb3504 100644
--- a/windows/fr-FR/firefox.adml
+++ b/windows/fr-FR/firefox.adml
@@ -45,6 +45,7 @@
Recherche
Préférences
User Messaging
+ Disabled Ciphers
Sites autorisés
Sites bloqués
Application Autoupdate
@@ -723,6 +724,42 @@ If this policy is enabled or not configured, Firefox features wil be recommended
If this policy is disabled, actions will not be recommended based on what the user types in the URL bar.
If this policy is enabled or not configured, actions will be recommended based on what the user types in the URL bar.
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is enabled.
If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false.
For a description of the preference, see:
diff --git a/windows/it-IT/firefox.adml b/windows/it-IT/firefox.adml
index 50bc666..4e5d70b 100644
--- a/windows/it-IT/firefox.adml
+++ b/windows/it-IT/firefox.adml
@@ -45,6 +45,7 @@
Ricerca
Preferenze
Messaggi utente
+ Disabled Ciphers
Siti consentiti
Siti bloccati
Aggiornamento automatico applicazione
@@ -723,6 +724,42 @@ Se questo criterio è abilitato o non configurato, saranno consigliate funzional
Se questo criterio è disabilitato, non saranno consigliate azioni basate su quanto l'utente ha digitato nella barra degli indirizzi.
Se questo criterio è abilitato o non configurato, saranno consigliate azioni basate su quanto l'utente ha digitato nella barra degli indirizzi.
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is enabled.
Se questo criterio è abilitato, la preferenza è impostata a Vero e resa non modificabile. Se questo criterio è disabilitato, la preferenza è impostata a Falso e resa non modificabile.
Per una descrizione della preferenza, si veda:
diff --git a/windows/zh-TW/firefox.adml b/windows/zh-TW/firefox.adml
index e38eb94..b1da63f 100644
--- a/windows/zh-TW/firefox.adml
+++ b/windows/zh-TW/firefox.adml
@@ -45,6 +45,7 @@
æå°
å好è¨å®
顯示給使ç¨è
çè¨æ¯
+ Disabled Ciphers
å
許ç網ç«
å°éç網ç«
æç¨ç¨å¼èªåæ´æ°
@@ -721,6 +722,42 @@ If this policy is disabled or not configured, the user can change autoplay prefe
è¥åç¨æ¤ååï¼å°ä¸æå¨ä½¿ç¨è
å¨ç¶²åå輸å
¥ææ¨è¦æä½è¡çºã
è¥åç¨æä¸è¨å®æ¤ååï¼åææ ¹æ使ç¨è
å¨ç¶²åå輸å
¥çå
§å®¹æ¨è¦æä½è¡çºã
+ TLS_DHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_DHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_DHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
+ If this policy is disabled, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 cipher is enabled.
+ TLS_RSA_WITH_AES_128_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_128_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_AES_256_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_AES_256_CBC_SHA cipher is enabled.
+ TLS_RSA_WITH_3DES_EDE_CBC_SHA
+ If this policy is disabled, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is disabled.
+
+If this policy is enabled or not configured, the TLS_RSA_WITH_3DES_EDE_CBC_SHA cipher is enabled.
è¥åç¨æ¤ååï¼å好è¨å®å°éå®çº trueãè¥åç¨æ¤ååï¼å好è¨å®åéå®çº falseã
è¥éè¦å好è¨å®ç詳細說æï¼è«åèï¼