SSL Cypher error on geico.com (Error code: ssl_error_no_cypher_overlap)

RESOLVED FIXED

Status

RESOLVED FIXED
4 years ago
3 years ago

People

(Reporter: wenzel, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Comment 1

4 years ago
The site is rejected by Firefox 39.0a1 (tonight's nightly) because it doesn't support a strong enough cipher.
(Reporter)

Comment 2

4 years ago
geico.com relies on RC4 only which is not strong enough and now whitelist-only: https://bugzilla.mozilla.org/show_bug.cgi?id=1124039
See Also: → bug 1124039
IE11 will fallback automatically like Firefox 36.
Fixed.
Status: NEW → RESOLVED
Last Resolved: 4 years ago
Resolution: --- → FIXED
Wait, www.geico.com is fixed, but geico.com (without www) is not.
Status: RESOLVED → REOPENED
Resolution: FIXED → ---

Comment 6

3 years ago
It appears that ecams.geico.com is also using SHA1withRSA for the signature algorithm and TLS_RSA_WITH_RC4_128_MD5 (0x4) and TLS_RSA_WITH_RC4_128_SHA (0x5) for the cypher suites.

https://www.ssllabs.com/ssltest/analyze.html?d=ecams.geico.com
Fixed.
Status: REOPENED → RESOLVED
Last Resolved: 4 years ago3 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.