Closed
Bug 1138613
Opened 10 years ago
Closed 9 years ago
SSL Cypher error on geico.com (Error code: ssl_error_no_cypher_overlap)
Categories
(Web Compatibility :: Site Reports, defect)
Web Compatibility
Site Reports
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: wenzel, Unassigned)
References
Details
Step to reproduce:
Visit https://geico.com/
Qualy SSL Labs report:
https://www.ssllabs.com/ssltest/analyze.html?d=geico.com&s=205.143.207.30
Reporter | ||
Comment 1•10 years ago
|
||
The site is rejected by Firefox 39.0a1 (tonight's nightly) because it doesn't support a strong enough cipher.
Reporter | ||
Comment 2•10 years ago
|
||
geico.com relies on RC4 only which is not strong enough and now whitelist-only: https://bugzilla.mozilla.org/show_bug.cgi?id=1124039
See Also: → 1124039
Comment 3•10 years ago
|
||
IE11 will fallback automatically like Firefox 36.
Comment 5•10 years ago
|
||
Wait, www.geico.com is fixed, but geico.com (without www) is not.
Status: RESOLVED → REOPENED
Resolution: FIXED → ---
It appears that ecams.geico.com is also using SHA1withRSA for the signature algorithm and TLS_RSA_WITH_RC4_128_MD5 (0x4) and TLS_RSA_WITH_RC4_128_SHA (0x5) for the cypher suites.
https://www.ssllabs.com/ssltest/analyze.html?d=ecams.geico.com
Comment 7•9 years ago
|
||
Fixed.
Status: REOPENED → RESOLVED
Closed: 10 years ago → 9 years ago
Resolution: --- → FIXED
Assignee | ||
Updated•6 years ago
|
Product: Tech Evangelism → Web Compatibility
You need to log in
before you can comment on or make changes to this bug.
Description
•