09-07-2015 08:10 AM
Hi. Changes in both Firefox and Chrome prevent to access the RV042 V03 web interface (Firmeware version: v4.2.1.02 Jan 18 2012 14:10:55) , throwing the following error: "Server has a weak ephemeral Diffie-Hellman public key".
Does anybody successfully implement a fix for this issue? Thanks in advance. Martin.
09-08-2015 07:12 AM
I was able to connect to my router from another computer with an older version of Firefox. Once there, I went to the Firewall tab and changed HTTPS from enable to disable.
I'm now able to access my router from the new version of Google Chrome, but I worry what security I may have given up by making this change.
09-08-2015 07:27 AM
Hi, you can try the following:
Type the URL given below in your browser's address bar:
about:config
Accept the securty warning
Here in this config page, you will find a list of boolean entries. Search ssl3 and specifically for below two entries:
security.ssl3.dhe_rsa_aes_128_sha
security.ssl3.dhe_rsa_aes_256_sha
Then make a right click on each and change the value from True to False selecting revert.
Let me know if that help
09-25-2015 11:22 AM
I'm using the RV042-G, and OS-X Yosemite. I've tried Chrome and Safari and get the same D-H error. I used an old version of Chrome and was able to update the Firmware.
Problem persists.
09-08-2015 07:27 AM
Hi, you can try the following:
Type the URL given below in your browser's address bar:
about:config
Accept the securty warning
Here in this config page, you will find a list of boolean entries. Search ssl3 and specifically for below two entries:
security.ssl3.dhe_rsa_aes_128_sha
security.ssl3.dhe_rsa_aes_256_sha
Then make a right click on each and change the value from True to False selecting revert.
Let me know if that help
09-10-2015 12:35 PM
Worked for me. I had to wait a min or so until the settings took effect on the browser.
Thanks
10-12-2015 08:35 PM
Hello,
All well and good to dumb down the browser's security, but what are you setting yourself up for in the wild west of the internet.
I am having trouble with brand new RV042's fresh out of the box, not older legacy gear.
I updated the firmware and the browsers, and finally dragged an old laptop out and logged in and switched of https.
I am using these routers for PPTP and the firewall disables remote log gin on the WAN.
I can log in on the LAN side with http.
So my browsers are still set for paranoia security levels, and I can log in off the LAN side ok.
So what is Cisco going to do to fix their SSL ?
Dave
09-10-2015 08:07 PM
Here is a link to an excellent article about the Server has a weak ephemeral Diffie-Hellman public key error.
12-18-2015 08:23 PM
so why are all the posts about work-arounds and circumventing security settings. Is there no fix for this?
Why has @cisco not responded to this issue? The new firmware still has this issue. I can still buy these routers. why should i do so?
Is there a fix?
12-18-2015 08:48 PM
The only thing you can do right now is disable https in the routers Firewall menu tab.
Use http
I refuse to dumb down a browsers security.
I tried to get Cisco to answer the question and they didn't even acknowledge the problem.
Use a complex password.
12-19-2015 09:50 AM
The latest firmwares fixes this issue.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: