Closed Bug 741103 Opened 12 years ago Closed 11 years ago

Disabling SSL3 doesn't allow any SSL connections.

Categories

(Core :: Security: PSM, defect)

Product:
Core
Component:
Security: PSM
Version:
10 Branch
Platform:
x86_64
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 672836

People

(Reporter: kurt, Unassigned)

Details

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:10.0.2) Gecko/20100101 Firefox/10.0.2 Iceweasel/10.0.2
Build ID: 20120217174734

Steps to reproduce:

I disabled SSL 3.0 support, but kept TLS 1.0 enabled.


Actual results:

Connecting to some sites doesn't work, and I get the following error:
Secure Connection Failed
An error occurred during a connection to encrypted.google.com.
Can't connect securely because the SSL protocol has been disabled.
(Error code: ssl_error_ssl_disabled)

Example sites include https://encrypted.google.com/

If I temporary enable SSL 3.0 again, and connect then, and then disable things again it works.

This seems to look a lot like bug 368130
Either the sites don't support TLS 1.0 and only support SSL 3.0 (in which case, they won't work because you've disabled SSL 3.0), or this is bug 672836.
Status: UNCONFIRMED → RESOLVED
Closed: 11 years ago
Component: Untriaged → Security: PSM
Product: Firefox → Core
Resolution: --- → DUPLICATE
I don't see this error message anymore. I now run with SSL v3.0 disabled everywhere without issues, including on a 10.0.12.

However, that doesn't mean that this is fixed, and I'm really concerned about MITM attacks causing a downgrade to SSL v3.0.  I really see no good reason to keep using SSL v3.0.
You need to log in before you can comment on or make changes to this bug.