Some Turkish government sites uses old TLS implementation

RESOLVED FIXED

Status

Tech Evangelism
Desktop
RESOLVED FIXED
3 years ago
2 years ago

People

(Reporter: Yuhong Bao, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(URL)

(Reporter)

Description

3 years ago
Some Turkish government sites uses a TLS implementation that has bug 946147, meaning it pays attention to only one byte of the ciphersuite list provided in the ClientHello. Given that the sites also support insecure renegotiation and only supports 3DES and RC4 ciphersuites, it is likely that the TLS implementation is old and should be upgraded:
https://www.ssllabs.com/ssltest/analyze.html?d=https://www.uyap.gov.tr
https://www.ssllabs.com/ssltest/analyze.html?d=avukat.uyap.gov.tr

Updated

3 years ago
Status: UNCONFIRMED → NEW
Ever confirmed: true
(Reporter)

Comment 1

3 years ago
Interestingly, this bug also cause problems with Googlebot.

Comment 2

2 years ago
https://avukat.uyap.gov.tr/avukat/index.jsp has been fixed.
And https://www.uyap.gov.tr has been fixed too.
Status: NEW → RESOLVED
Last Resolved: 2 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.