We are on Openspecimen V1.1 - our users when they try to use mozilla firefox v39.0 they are getting the following error message instead of the login screen - has anyone had similar experience. Sure this has to do with the (weak ephemeral Diffie-Hellman key). But do we need to do anything from the application perspective.
SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key)
We had a similar problem here. Firefox v39 seems to be the issue. Going back to v38.0.6 seems to solve the problem. Uninstall and remove the install directory and then get the older version here:
http://download.cdn.mozilla.net/pub/firefox/releases/38.0.6/win32/en-US/
Krishagni, any idea why there is an issue in the latest version of Firefox?
@Dinesh_Pal I noticed the same issue when using v1.1. @bob_lange After uninstalling the latest version of Firefox from my computer and going back to Firefox v38.0.6, I am able to access v1.1 again.
I think the server is missing a patch fixed for the recently published logjam attack. Downgrading the Firefox should be the work around but the risk of logjam vulnerability still remains open.
The ideal fix would be patching the server for logjam attack (https://weakdh.org/).
This makes it look like JBoss is working on a patch, but does not have one avaialable:
Has anyone else patched their JBoss server or found a workaround for this?