搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

"Secure Connection failed" after update to firefox 39

more options

Hi, After update of firefox to version 39 i am unable to pay online bill, shopping bill etc and got this message "Secure Connection Failed

An error occurred during a connection to acs.onlinesbi.com. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key)

   The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
   Please contact the website owners to inform them of this problem.

Report this error " Please help me how to fix this problem.Thanks.

Hi, After update of firefox to version 39 i am unable to pay online bill, shopping bill etc and got this message "Secure Connection Failed An error occurred during a connection to acs.onlinesbi.com. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key) The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem. Report this error " Please help me how to fix this problem.Thanks.

被采纳的解决方案

This indicates that the site is defaulting to an obsolete encryption cipher which is vulnerable to the "Logjam" attack that was in the news earlier this year.

You can disable these old ciphers in Firefox to try to force the site to up its game. Here's how:

(1) In a new tab, type or paste about:config in the address bar and press Enter. Click the button promising to be careful.

(2) In the search box above the list, type or paste dhe and pause while the list is filtered

(3) Double-click the security.ssl3.dhe_rsa_aes_128_sha preference to switch it from true to false (disable Firefox from using this cipher)

(4) Double-click the security.ssl3.dhe_rsa_aes_256_sha preference to switch it from true to false (disable Firefox from using this cipher)

Then try your payment site again. Any improvement?

定位到答案原位置 👍 199

所有回复 (5)

more options

选择的解决方案

This indicates that the site is defaulting to an obsolete encryption cipher which is vulnerable to the "Logjam" attack that was in the news earlier this year.

You can disable these old ciphers in Firefox to try to force the site to up its game. Here's how:

(1) In a new tab, type or paste about:config in the address bar and press Enter. Click the button promising to be careful.

(2) In the search box above the list, type or paste dhe and pause while the list is filtered

(3) Double-click the security.ssl3.dhe_rsa_aes_128_sha preference to switch it from true to false (disable Firefox from using this cipher)

(4) Double-click the security.ssl3.dhe_rsa_aes_256_sha preference to switch it from true to false (disable Firefox from using this cipher)

Then try your payment site again. Any improvement?

more options

Its working.Thank you very much Sir.

more options

I had exactly this same problem with this browser. now its solved. Thanks jscher2000.

more options

attempting to access https://community.landesk.com/support/docs/DOC-39460 I am running FireFox 42.0 Other people can access that site so the problem is my installation

On the above, and more than a few other sites, and I get Secure Connection Failed

I have edited about:config so that

 security.ssl3.dhe_rsa_aes_128_sha 
 security.ssl3.dhe_rsa_aes_256_sha 

are both FALSE. Restarted FireFox

No effect.

There are many security.ssl3 settings including

  security.ssl3.ecdhe_ecdsa_aes_128_sha;true

should I turn something else off?

more options

Hi Jonathan_Jaffe, could you start a new question? Since your problem is not caused by the Logjam issue, it presumably is something else personal to your configuration.

You can start a new question at the following link. Scroll down past the suggestions to continue submitting your question: https://support.mozilla.org/questions/new/desktop/fix-problems

Please mention any untrusted connection errors you may have seen on other sites, and whether you use any security software known to intercept secure connections for filtering (e.g., Avast, BitDefender, ESET, Kaspersky).