Closed Bug 1138211 Opened 7 years ago Closed 7 years ago

sprint.com is RC4-only on IPv4 (oddly not on IPv6)

Categories

(Web Compatibility :: Desktop, defect)

defect
Not set
normal

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: tanner, Unassigned)

References

Details

Only supports TLS v1.0 on TLS_RSA_WITH_RC4_128_MD5 it looks like.

https://www.ssllabs.com/ssltest/analyze.html?d=sprint.com&s=65.173.211.241
This server isn't TLS intolerant. (the "Protocol Details" section shows tolerance tests; this server handles TLS 1.x requests properly) It just doesn't support anything newer than 1.0. So, not bug 1126620. Just supporting RC4 is bug 1138101.
Blocks: RC4-Dependence
No longer blocks: TLS-Intolerance
OS: Linux → All
Hardware: x86_64 → All
I could connect the server with TLS_RSA_WITH_3DES_EDE_CBC_SHA.
$ ping www.sprint.com

www.sprint.com [2600::aaaa]に ping を送信しています 32 バイトのデータ:
2600::aaaa からの応答: 時間 =187ms
2600::aaaa からの応答: 時間 =190ms
2600::aaaa からの応答: 時間 =184ms
2600::aaaa からの応答: 時間 =188ms

Do their IPv6 server support a cipher suite other than RC4?
I can reproduce the bug by setting "network.dns.disableIPv6" to true.
Summary: sprint.com fails to load (ssl_error_no_cypher_overlap) → sprint.com is RC4-only on IPv4 (oddly not on IPv6)
Fixed (both IPv4 and IPv6).
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
Product: Tech Evangelism → Web Compatibility
You need to log in before you can comment on or make changes to this bug.