Closed
Bug 1170833
Opened 10 years ago
Closed 10 years ago
home.nest.com breaks with Firefox 39 or higher
Categories
(Web Compatibility :: Site Reports, defect)
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: catlee, Unassigned)
References
Details
I am unable to use home.nest.com with Firefox 39 or higher due to this error:
An error occurred during a connection to transport01-rts10-iad01.transport.home.nest.com.
SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message.
(Error code: ssl_error_weak_server_ephemeral_dh_key)
Comment 1•10 years ago
|
||
See also this other user having problems: https://twitter.com/phinze/status/604718110210441216
Blocks: 1166031, CVE-2015-4000
Comment 2•10 years ago
|
||
Fallout from the Logjam fix
Comment 3•10 years ago
|
||
768-bit DHE. Wonder if it is Java. Will notify Google security.
Comment 4•10 years ago
|
||
Just added sleevi and wtc to CC list.
Comment 5•10 years ago
|
||
Please report through the proper channels, rather than CC'ing random Googlers or tweeting at them :)
In this case, reporting through our normal security channels is the right way, the same as any security issue.
Comment 6•10 years ago
|
||
I did. Cid: 1-8374000007338 if interested.
Reporter | ||
Comment 7•10 years ago
|
||
I also tried contacting Nest support (ref 01247546), and was encouraged to try a different browser instead :P
Comment 8•10 years ago
|
||
Workaround: install Disable DHE extension:
https://addons.mozilla.org/ja/firefox/addon/disable-dhe/
Comment 9•10 years ago
|
||
I believe that this should now be fixed on the server side.
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
Comment 10•10 years ago
|
||
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA is still enabled though, which is probably an error.
Assignee | ||
Updated•6 years ago
|
Product: Tech Evangelism → Web Compatibility
You need to log in
before you can comment on or make changes to this bug.
Description
•