paulhoughton
Member
Recently (not sure in which release)... Google Chrome implemented tighter security on SSL certs.
From their support pages found here:
https://support.google.com/chrome/answer/6098869?p=dh_error&rd=1#DHkey
""Server has a weak ephemeral Diffie-Hellman public key" or ERR_SSL_WEAK_EPHEMERAL_DH_KEY
If you see this error, it means that a secure connection can't be established because of outdated security code on the website. Chrome protects your privacy by preventing you from connecting to these sites. You won't be able to visit this page using Chrome.
If you're a website administrator, we recommend you update your server to support ECDHE and disable DHE. If ECDHE is unavailable, you can instead disable all DHE cipher suites and rely on plain RSA."
I am trying to access my Internal hardware Firewall, a Netgear UTM25S but I can't get to the Login screen due to this issue. Unfortunately Netgear will be removing themselves from the Firewall market completely and I dont see this as a priority for them in any future firmware releases.
I will continue to investigate the issue and if I find a resolution I'll post the fix in this thread. I've seen one or two hacks on some sites but don't want to compromise the security of my browser just to fix this one issue.
From their support pages found here:
https://support.google.com/chrome/answer/6098869?p=dh_error&rd=1#DHkey
""Server has a weak ephemeral Diffie-Hellman public key" or ERR_SSL_WEAK_EPHEMERAL_DH_KEY
If you see this error, it means that a secure connection can't be established because of outdated security code on the website. Chrome protects your privacy by preventing you from connecting to these sites. You won't be able to visit this page using Chrome.
If you're a website administrator, we recommend you update your server to support ECDHE and disable DHE. If ECDHE is unavailable, you can instead disable all DHE cipher suites and rely on plain RSA."
I am trying to access my Internal hardware Firewall, a Netgear UTM25S but I can't get to the Login screen due to this issue. Unfortunately Netgear will be removing themselves from the Firewall market completely and I dont see this as a priority for them in any future firmware releases.
I will continue to investigate the issue and if I find a resolution I'll post the fix in this thread. I've seen one or two hacks on some sites but don't want to compromise the security of my browser just to fix this one issue.
