Results 1 to 2 of 2

Thread: Obsolete Cipher for HTTPS

  1. #1

    Unhappy Obsolete Cipher for HTTPS

    Hi,

    I'm currently getting the following message when I try to connect to my Quadro M8L (fireware version 5.3.75/Release) when I try to connect to it using Google Chrome v47:

    Attackers might be trying to steal your information from myserver.com (for example, passwords, messages, or credit cards). NET::ERR_CERT_INVALID

    When I look at the certificate information I get the following details on why it will not let me connect.

    Your connection to https://myserver.com is encrypted using an obsolete cipher suite.
    The connection uses TLS 1.0.
    The connection is encrypted using AES_256_CBC, with HMAC-SHA1 for message authentication and DHE_RSA as the key exchange mechanism.
    The server does not support the TLS renegotiation extension.

    Firefox has the same issue but it allows me to add an exception whereas Chrome just will not let me access the site.

    My questions are is there any way to change the ciphers being used and can I change the version of TLS being used to TLS 1.2? It would also be useful if someone could tell me how to install my own HTTPS certificates on this server.

    Regards

    John.

  2. #2

    Default

    To avoid this message, use TLS 1.2 and prioritize an ECDHE cipher suite with AES_128_GCM or CHACHA20_POLY1305. Most servers will wish to negotiate TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256.

    http://net-informations.com/q/mis/ssl.html

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Medium Firewall, no WAN https access!
    By darylp in forum Troubleshooting and Problems
    Replies: 2
    Last Post: 09-29-2008, 09:35 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •