Closed Bug 86379 Opened 24 years ago Closed 24 years ago

Mozilla 0.9.1 (Linux AND Win2K) breaks Yahoo! secure mail logon

Categories

(Core Graveyard :: Security: UI, defect)

Product:
Core Graveyard
Component:
Security: UI
Version:
1.0 Branch
Platform:
x86
All
Type:
defect
Priority:
Not set
Severity:
major

Tracking

(Not tracked)

Status:
VERIFIED WORKSFORME

People

(Reporter: craigemery, Assigned: security-bugs)

References

(
URL
)

Details

Yahoo! Mail provides a secure logon screen for access to a web interface for email services. Other https connections (such as sourceforge) work just fine as always. Mozilla 0.9 worked fine as does IE 5 (Win2K) and Netscape 4.7.7 (Linux) but https://edit.europe.yahoo.com/config/login_verify2?.src=ym&.v=&.u=&.last=&promo=&.intl=uk&.bypass=&.partner=&.done=http%3a//f100.mail.yahoo.com/ym/login%3f.rand=etq6pbfevm7jc can no longer be connected to by SSL/TLS. Mozilla 0.9.1 (both Linux and Win2K) no longer makes a secure connection; only a non-secure connection. This is the "Page Information" supplied by Netscape 4.7.7 (Linux) for the URL. As you can see it seems like a perfectly fine secure connection. Craig. Location: https://edit.europe.yahoo.com/config/login_verify2?.src=ym&.v=&.u=&.last=&promo=&.intl=uk&.bypass=&.partner=&.done=http%3a//f100.mail.yahoo.com/ym/login%3f.rand=etq6pbfevm7jc File MIME Type: text/html Source: Currently in memory cache Local cache file: none Last Modified: Unknown Last Modified: Unknown Content Length: 8186 Expires: Thu 05 Jan 1995 10:00:00 PM GMT Charset: Unknown Security: This is a secure document that uses a high-grade encryption key for U.S. domestic use only (RC4, 128 bit). Certificate: This Certificate belongs to: edit.europe.yahoo.com Yahoo Yahoo Santa Clara, California, US This Certificate was issued by: Secure Server Certification Authority RSA Data Security, Inc. US Serial Number: 03:C0:CC:2E:DC:0B:01:18:5D:26:A8:E5:67:69:50:EF This Certificate is valid from Thu May 24, 2001 to Sat May 25, 2002 Certificate Fingerprint: 15:0A:E6:85:1F:EC:79:A1:6C:1F:58:83:B8:7E:AA:9A
WFM 0.9.1 WinMe The Login page for Yahoo Mail
Worksforme. Try the 6/18 build.
Status: UNCONFIRMED → RESOLVED
Closed: 24 years ago
Resolution: --- → WORKSFORME
Where has this bug and its fix been tracked?
John, I'm moving this to your plate simply for accurate accounting (#of bugs for crypto, etc.)...
Component: Security: General → Security: Crypto
QA Contact: ckritzer → junruh
I believe that bug 85211 fixed this.
Works with 2001-18-06-trunk. Thanks everyone.
Verified.
Status: RESOLVED → VERIFIED
Mass changing Security:Crypto to PSM
Component: Security: Crypto → Client Library
Product: Browser → PSM
Version: other → 2.1
Mass changing Security:Crypto to PSM
Product: PSM → Core
Version: psm2.1 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.