Closed
Bug 1127204
Opened 9 years ago
Closed 9 years ago
bankofthewest is TLS 1.2 intolerant and RC4 only
Categories
(Web Compatibility :: Site Reports, defect)
Web Compatibility
Site Reports
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: mt, Unassigned)
References
()
Details
www.bankofthewest.com as well as etimebanker. and images. are TLS 1.2 intolerant. We should ask them to upgrade their stack. If they can't, the whitelist in bug 1037424 might be a good choice. If we do neither, then we both stand to lose users.
Reporter | ||
Comment 1•9 years ago
|
||
The report from ssllabs is pretty dire: https://www.ssllabs.com/ssltest/analyze.html?d=bankofthewest.com Just one bad cipher suite: RC4. SSL3 support. TLS 1.2 intolerant. SHA-1 certificates. EV certificates and HSTS are indications that someone cares about security.
Comment 2•9 years ago
|
||
(In reply to Martin Thomson [:mt] from comment #1) > Just one bad cipher suite: RC4. Specifically TLS_RSA_WITH_RC4_128_SHA.
Blocks: RC4-Dependence
Summary: bankofthewest is TLS 1.2 intolerant → bankofthewest is TLS 1.2 intolerant and RC4 only
Assignee | ||
Updated•5 years ago
|
Product: Tech Evangelism → Web Compatibility
You need to log in
before you can comment on or make changes to this bug.
Description
•