Closed
Bug 1170833
Opened 10 years ago
Closed 10 years ago
home.nest.com breaks with Firefox 39 or higher
Categories
(Web Compatibility :: Site Reports, defect)
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: catlee, Unassigned)
References
Details
I am unable to use home.nest.com with Firefox 39 or higher due to this error:
An error occurred during a connection to transport01-rts10-iad01.transport.home.nest.com.
SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message.
(Error code: ssl_error_weak_server_ephemeral_dh_key)
|
||
Comment 1•10 years ago
|
||
See also this other user having problems: https://twitter.com/phinze/status/604718110210441216
Blocks: 1166031, CVE-2015-4000
|
|
||
Comment 2•10 years ago
|
||
Fallout from the Logjam fix
|
||
Comment 3•10 years ago
|
||
768-bit DHE. Wonder if it is Java. Will notify Google security.
|
|
||
Comment 4•10 years ago
|
||
Just added sleevi and wtc to CC list.
|
||
Comment 5•10 years ago
|
||
Please report through the proper channels, rather than CC'ing random Googlers or tweeting at them :)
In this case, reporting through our normal security channels is the right way, the same as any security issue.
|
|
||
Comment 6•10 years ago
|
||
I did. Cid: 1-8374000007338 if interested.
|
Reporter | |
Comment 7•10 years ago
|
||
I also tried contacting Nest support (ref 01247546), and was encouraged to try a different browser instead :P
|
||
Comment 8•10 years ago
|
||
Workaround: install Disable DHE extension:
https://addons.mozilla.org/ja/firefox/addon/disable-dhe/
|
||
Comment 9•10 years ago
|
||
I believe that this should now be fixed on the server side.
Status: NEW → RESOLVED
Closed: 10 years ago
Resolution: --- → FIXED
|
|
||
Comment 10•10 years ago
|
||
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA is still enabled though, which is probably an error.
|
Assignee | |
Updated•6 years ago
|
Product: Tech Evangelism → Web Compatibility
You need to log in
before you can comment on or make changes to this bug.
Description
•