• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 338
  • Last Modified:

SSL is using an outdated encryption method which is no longer classfied as secure

We are running a Windows 2003 IIS 6.0 server and a customer with the browser Opera started getting this error message.  

SSL is using an outdated encryption method which is no longer classified as secure
Encryption protocol 128Bit ARC4 (RSA/MD5)

I found the tech article about using SSLv2.0 and made the Regedit change and reboot to SSL3.0

I also checked the box in IIS Require Secure Channel SSL
But that does'nt seem to be in the right direction.

I even had GEOTRust reissue the cert thinking something was wrong.

After calling Geotrust back they said this was something with the Settings on the Windows 2003 Server, any help?
0
cybersharks1
Asked:
cybersharks1
  • 5
  • 5
1 Solution
 
Kyle AbrahamsSenior .Net DeveloperCommented:
http://my.opera.com/yngve/blog/show.dml/382945

Anything with unsecured content?  Do you meet these specs for opera?
0
 
cybersharks1Author Commented:
We are using a Geotrust Premium SSL with 128 and SSLv3.0 on a Windows 2003 Server with IIS 6.0

Nothing with Unsecure contact - No
0
 
Kyle AbrahamsSenior .Net DeveloperCommented:
0
A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

 
cybersharks1Author Commented:
PCT was enabled but I disabled it using the Tech Article just like we did SSL2.0

I'm confused why just Opera Browser says their is an error and Firefox 3 and IE 8.0 don't

Is Opera like so advance it telling users that their really is a security issue with SSL or is this just a false positive?

I'm still looking up more info on the new now.  Still not sure if this is a Browser related issue or Windows 2003 SSL issue
0
 
Kyle AbrahamsSenior .Net DeveloperCommented:
It might be Opera itself which is throwing the false positive.  Can you post hte URL?  Like I said if there's any mixed content opera challenges it.  

0
 
cybersharks1Author Commented:
https://web1.cybersharks.net/

This is a Shared SSL which we let customer use:

https://web1.cybersharks.net/valleyenergy-org/services/propane-res-app.aspx

Is the customer linkl
0
 
Kyle AbrahamsSenior .Net DeveloperCommented:
your images are not in the https folder . . . mixed content which Opera documents will throw an error regardless.

Best way is to reproduce the images you use under your https folder and reference from there.
error.jpg
0
 
cybersharks1Author Commented:
So, is that the same issue with the Customers link below?

https://web1.cybersharks.net/valleyenergy-org/services/propane-res-app.aspx
0
 
Kyle AbrahamsSenior .Net DeveloperCommented:
RSA key for this is only 512 . . . Opera states you need a length > 900.
0
 
cybersharks1Author Commented:
Thank you ged325
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 5
  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now