Closed Bug 1138613 Opened 10 years ago Closed 9 years ago

SSL Cypher error on geico.com (Error code: ssl_error_no_cypher_overlap)

Categories

(Web Compatibility :: Site Reports, defect)

defect
Not set
normal

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: wenzel, Unassigned)

References

Details

The site is rejected by Firefox 39.0a1 (tonight's nightly) because it doesn't support a strong enough cipher.
geico.com relies on RC4 only which is not strong enough and now whitelist-only: https://bugzilla.mozilla.org/show_bug.cgi?id=1124039
See Also: → 1124039
IE11 will fallback automatically like Firefox 36.
Fixed.
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
Wait, www.geico.com is fixed, but geico.com (without www) is not.
Status: RESOLVED → REOPENED
Resolution: FIXED → ---
It appears that ecams.geico.com is also using SHA1withRSA for the signature algorithm and TLS_RSA_WITH_RC4_128_MD5 (0x4) and TLS_RSA_WITH_RC4_128_SHA (0x5) for the cypher suites. https://www.ssllabs.com/ssltest/analyze.html?d=ecams.geico.com
Fixed.
Status: REOPENED → RESOLVED
Closed: 10 years ago9 years ago
Resolution: --- → FIXED
Product: Tech Evangelism → Web Compatibility
You need to log in before you can comment on or make changes to this bug.