X
Tap here to go to the mobile version of the site.

Support Forum

You blocked UnitedHealthCare.com, this is a secure site. I need this for my work. I will have to change browsers now.

Posted

I am a medical insurance biller. I downloaded Windows 8, and Mozilla Firefox so that I could use United Healthcare Authorizations because they stopped allowing use on Google Chrome. I tried to get on the site, and the message I received was:

"An error occurred during a connection to saml2.radiologynotifications.com. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key)

   The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
   Please contact the website owners to inform them of this problem."  

When I looked this up, it said that your site said this was a malicious site and blocked it. This is a secure site. And I need this site for my work. I have been doing this for 15 years, and If I cannot use this I will be forced to use another browser.

Can you please help me?

I am a medical insurance biller. I downloaded Windows 8, and Mozilla Firefox so that I could use United Healthcare Authorizations because they stopped allowing use on Google Chrome. I tried to get on the site, and the message I received was: "An error occurred during a connection to saml2.radiologynotifications.com. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key) The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem." When I looked this up, it said that your site said this was a malicious site and blocked it. This is a secure site. And I need this site for my work. I have been doing this for 15 years, and If I cannot use this I will be forced to use another browser. Can you please help me?

Additional System Details

Installed Plug-ins

  • Adobe PDF Plug-In For Firefox and Netscape 10.1.4
  • Google Update
  • 5.1.40728.0
  • Windows Presentation Foundation (WPF) plug-in for Mozilla browsers

Application

  • Firefox 41.0.1
  • User Agent: Mozilla/5.0 (Windows NT 6.0; rv:41.0) Gecko/20100101 Firefox/41.0
  • Support URL: https://support.mozilla.org/1/firefox/41.0.1/WINNT/en-US/

Extensions

  • Avast Online Security 10.2.0.187 (wrc@avast.com) (Inactive)
  • Microsoft .NET Framework Assistant 0.0.0 ({20a82645-c095-46ed-80e3-08825760534b}) (Inactive)

Javascript

  • incrementalGCEnabled: True

Graphics

  • adapterDescription: Intel(R) Q33 Express Chipset Family
  • adapterDescription2:
  • adapterDeviceID: 0x29d2
  • adapterDeviceID2:
  • adapterDrivers: igdumdx32
  • adapterDrivers2:
  • adapterRAM: Unknown
  • adapterRAM2:
  • adapterSubsysID: 281e103c
  • adapterSubsysID2:
  • adapterVendorID: 0x8086
  • adapterVendorID2:
  • direct2DEnabled: False
  • direct2DEnabledMessage: [u'blockedDriver']
  • directWriteEnabled: False
  • directWriteVersion: 0.0.0.0
  • driverDate: 2-26-2009
  • driverDate2:
  • driverVersion: 7.15.10.1666
  • driverVersion2:
  • info: {u'AzureCanvasBackend': u'skia', u'AzureFallbackCanvasBackend': u'cairo', u'AzureContentBackend': u'cairo', u'AzureSkiaAccelerated': 0}
  • isGPU2Active: False
  • numAcceleratedWindows: 0
  • numAcceleratedWindowsMessage: [u'']
  • numTotalWindows: 3
  • supportsHardwareH264: False
  • webglRenderer: Google Inc. -- ANGLE (Intel(R) Q33 Express Chipset Family Direct3D9Ex vs_0_0 ps_2_0)
  • windowLayerManagerRemote: True
  • windowLayerManagerType: Basic

Modified Preferences

Misc

  • User JS: No
  • Accessibility: No
FredMcD
  • Top 10 Contributor
4272 solutions 59919 answers
http://www.ehow.com/how_11385212_troubleshoot-reset-connection-firefox.html https://support.mozilla.org/en-US/kb/server-not-found-connection-problem https://support.mozilla.org/en-US/kb/firefox-cant-load-websites-other-browsers-can https://support.mozilla.org/en-US/kb/secure-connection-failed-error-message https://support.mozilla.org/en-US/kb/connection-untrusted-error-message '''http://kb.mozillazine.org/Error_loading_websites''' '''This Connection is Untrusted''' is sometimes caused because the computer system clock is wrong. Check the time / date / time zone settings.
jscher2000
  • Top 10 Contributor
8797 solutions 71954 answers

Helpful Reply

Hi Mightyhunter, this error message indicates that the site is trying to use an obsolete encryption cipher which is vulnerable to the "Logjam" attack that was in the news earlier this year.

What does that mean?

Even though you trust the server, a "Logjam" attack compromises the security of your individual connection to the server, lowering the protection normally provided by SSL to a level that is easily cracked and read by others on the network. That is why Firefox protects you from making this connection.

What can you do now?

The very best solution for the protection of all users of that server is for United Health CareCore National to change some settings on the server. Since the information you can view on the server is most likely very sensitive, this fix is overdue, and we encourage you to report the problem ASAP.

If you cannot wait, you can try disabling these old ciphers in your Firefox, which hopefully will force the server to try some more secure ciphers when connecting with you. Here's how:

(1) In a new tab, type or paste about:config in the address bar and press Enter. Click the button promising to be careful.

(2) In the search box above the list, type or paste dhe and pause while the list is filtered

(3) Double-click the security.ssl3.dhe_rsa_aes_128_sha preference to switch it from true to false (disable Firefox from using this cipher)

(4) Double-click the security.ssl3.dhe_rsa_aes_256_sha preference to switch it from true to false (disable Firefox from using this cipher)

Then try the site again; you might have to reload the page using Ctrl+Shift+r to bypass cached information.

Success?

Hi Mightyhunter, this error message indicates that the site is trying to use an obsolete encryption cipher which is vulnerable to the "Logjam" attack that was in the news earlier this year. ''What does that mean?'' Even though you trust the server, a "Logjam" attack compromises the security of ''your individual connection'' to the server, lowering the protection normally provided by SSL to a level that is easily cracked and read by others on the network. That is why Firefox protects you from making this connection. ''What can you do now?'' The very best solution for the protection of all users of that server is for <s>United Health</s> <u>CareCore National</u> to change some settings on the server. Since the information you can view on the server is most likely very sensitive, this fix is overdue, and we encourage you to report the problem ASAP. If you cannot wait, you can try disabling these old ciphers ''in your Firefox,'' which hopefully will force the server to try some more secure ciphers when connecting with you. Here's how: (1) In a new tab, type or paste '''about:config''' in the address bar and press Enter. Click the button promising to be careful. (2) In the search box above the list, type or paste '''dhe''' and pause while the list is filtered (3) Double-click the '''security.ssl3.dhe_rsa_aes_128_sha''' preference to switch it from true to false (disable Firefox from using this cipher) (4) Double-click the '''security.ssl3.dhe_rsa_aes_256_sha''' preference to switch it from true to false (disable Firefox from using this cipher) Then try the site again; you might have to reload the page using Ctrl+Shift+r to bypass cached information. Success?

Modified by jscher2000

jscher2000
  • Top 10 Contributor
8797 solutions 71954 answers

For the record:

  • the radiologynotifications.com domain is registered to CareCore National, LLC in whois
  • the IP address of the server at 206.19.204.105 is listed as being controlled by CareCore National, LLC at ARIN

Therefore, I think you would direct your concern to them instead of UHC.

They also seem to trade as eviCore Healthcare: https://www.carecorenational.com/

For the record: * the radiologynotifications''.''com domain is registered to CareCore National, LLC in whois * the IP address of the server at 206.19.204.105 is listed as being controlled by CareCore National, LLC at ARIN Therefore, I think you would direct your concern to them instead of UHC. They also seem to trade as eviCore Healthcare: https://www.carecorenational.com/

Modified by jscher2000