Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Avatar for Username

Поиск в Поддержке

Избегайте мошенников, выдающих себя за службу поддержки. Мы никогда не попросим вас позвонить, отправить текстовое сообщение или поделиться личной информацией. Сообщайте о подозрительной активности, используя функцию «Пожаловаться».

Подробнее

Эта тема была архивирована. Если вам нужна помощь, задайте новый вопрос.

Why "Firefox recommends that you don't enter ...information on this web" what is wrong on SHA256 site cert and how to get rid of the notice

  • 1 ответ
  • 1 имеет эту проблему
  • 6 просмотров
  • Последний ответ от philipp

jiri.rohlicek
jiri.rohlicek
more options

FF started warn me on some sites showing message: "Firefox recommends that you don't enter your password, credit card and other personal information on this web" and recommends "Don't trust this website". OK, certificate is valid, SHA256 encrypted, but, "Broken Encryption (TLS_RSA_WITH_RC4_128_SHA, 128 bit keys, TLS 1.2)" How can I get rid of the message, if I have to use the server and I have no possibility to change its encryption strenghts as it is not server of mine?

Thanks

Jiří Rohlíček

FF started warn me on some sites showing message: "Firefox recommends that you don't enter your password, credit card and other personal information on this web" and recommends "Don't trust this website". OK, certificate is valid, SHA256 encrypted, but, "Broken Encryption (TLS_RSA_WITH_RC4_128_SHA, 128 bit keys, TLS 1.2)" How can I get rid of the message, if I have to use the server and I have no possibility to change its encryption strenghts as it is not server of mine? Thanks Jiří Rohlíček

Выбранное решение

hi, the rc4 cipher suite can no longer be considered state of the art and doesn't provide a decent level of security anymore - therefore firefox will warn you on affected sites (i am not sure what benefit it would have for you if this information is withhold from you): https://blog.mozilla.org/security/2015/09/11/deprecating-the-rc4-cipher/

Прочитайте этот ответ в контексте 👍 0

Все ответы (1)

philipp
philipp
  • Moderator
more options

Выбранное решение

hi, the rc4 cipher suite can no longer be considered state of the art and doesn't provide a decent level of security anymore - therefore firefox will warn you on affected sites (i am not sure what benefit it would have for you if this information is withhold from you): https://blog.mozilla.org/security/2015/09/11/deprecating-the-rc4-cipher/