Closed Bug 599111 Opened 15 years ago Closed 15 years ago

https://www.hillsbank.com/ uses a very weak (256-bit) Diffie-Hellman key for DHE_RSA SSL cipher suites.

Categories

(Tech Evangelism Graveyard :: English US, defect)

Product:
Tech Evangelism Graveyard
Component:
English US
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED WORKSFORME

People

(Reporter: wtc, Unassigned)

References

(
URL
)

Details

This bug is originally reported in Chromium issue 56142: http://code.google.com/p/chromium/issues/detail?id=56142 The server https://www.hillsbank.com/ uses a very weak (256-bit) Diffie-Hellman key for DHE_RSA SSL cipher suites. To fix this server configuration problem, either - use a 1024-bit Diffie-Hellman key for the DHE_RSA SSL cipher suites, or - disable all DHE SSL cipher suites. The latter may be easier to do.
They disabled all their cipher suites except: TLS_RC4_128_WITH_MD5 TLS_RSA_WITH_RC4_128_MD5 TLS_RSA_WITH_RC4_128_SHA https://www.ssllabs.com/ssldb/analyze.html?d=https%3A%2F%2Fwww.hillsbank.com
Status: NEW → RESOLVED
Closed: 15 years ago
Resolution: --- → WORKSFORME
Product: Tech Evangelism → Tech Evangelism Graveyard
You need to log in before you can comment on or make changes to this bug.