Wednesday
Nov292006
FireFox Disables Old Security Protocols
Wednesday, November 29, 2006 at 14:37
I received an error today when I tried to access a SSL protected website. According to FireFox;
It seems that FireFox has removed the support for older/insecure SSL sessions. Some research showed that these setting are accessible through the 'hidden' configuration in FireFox. Just type about:config in your addressbar and it shows the advanced settings of FireFox.
Put security.ssl3.rsa_rc4_40_md5 in the filter bar, so that all other settings are removed from the current view. After that set the parameter to true (default is false).
After this you're able to access the website. If not try enabling the other encryption parameter to true (which are set to false). Filter on security, and the parameter are quite similar to the one discussed in this entry.
Note that there might be some security issues when you enable old(er) security protocol support in FireFox. These are disabled for a reason!!!.
Firefox can't connect securely to because the site uses a security protocol which isn't enabled.
It seems that FireFox has removed the support for older/insecure SSL sessions. Some research showed that these setting are accessible through the 'hidden' configuration in FireFox. Just type about:config in your addressbar and it shows the advanced settings of FireFox.
Put security.ssl3.rsa_rc4_40_md5 in the filter bar, so that all other settings are removed from the current view. After that set the parameter to true (default is false).
After this you're able to access the website. If not try enabling the other encryption parameter to true (which are set to false). Filter on security, and the parameter are quite similar to the one discussed in this entry.
Note that there might be some security issues when you enable old(er) security protocol support in FireFox. These are disabled for a reason!!!.
Willem | 7 Comments |
Reader Comments (7)
you are not gonna reach me by mail. It is a serious problem for me for "the site uses a security protocol which isn't enabled". It is driving me mad, very mad, i am going to ssssssssssssssssssssssssssue mozilla.
Based on your instructions, I have not successfully curbed this problem. Please do further research for me, tq. Just show the new instructions on this site, I am keeping an eye on this site, always.
Hi Olivia,
you may try altering the following settings in the about:config dialog:
security.enable_ssl2 -> true
security.sslx.* -> true
By the the last setting (security.sslx.*), I mean to set ALL SSL related items to true.
If this works, you should work your way back to find out which setting works. Remember that Mozilla did turn those security protocols off for a reason. The security protocols they disabled are old and/or insecure, and shouldn't be used anymore.
I don't know which site you need to access, but you might want to address this issue to the owner of the website. It's his/her responsibility to keep up with progress.
I had tried your way, that is to turn all false into true, but unsuccessful. Please and honourably I wish you can admit yourself into curbing this public raging problem.
Ok, that's the problem, I have turned all false into true, even your suggested forms are also been executed.
which site are you trying to access?
mail.yahoo.com, gmail, hotmail.
If all these sites are giving you this specific error/warning you probably have another issue on your system.
The error usually occurs with old systems/servers which are unable to use the newer encryption algorithms. The ones your mentioning don't have this problem on my systems (Windows or Mac OSX). I use them regularly (apart from the yahoo mail) myself.
I don't know which platform you are using, but you might wanna do a virus/spy/malware check.