X
Tik hier voor de mobiele versie van de website.
Scheduled maintenance: Wednesday, April 1, between 3:30pm and 5:30pm UTC. This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn’t solve your issue and you want to ask a question, we have our support community waiting to help you at @firefox on Twitter

Ondersteuningsforum

Deze conversatie is gearchiveerd. Stel een nieuwe vraag als u hulp nodig hebt.

Error code: SSL_ERROR_NO_CYPHER_OVERLAP in V 60.2 ESL

Geplaatst

Cannot connect to secure websites.

https://www.hvfcuonline.org/tob/live/usp-core/app/initialLogin https://www.amtrak.com/

Under CENTOS 6.10 and RHEL6.9 (on two machines) using Firefox 60.2 ESL Tried setting numerous custom settings in config per previous posts and no help Ran in safe mode to eliminate plugins. First link only shows the problem after entering your login. amtrak link shows problem at page load. These are the only two sites I have seen the problem with.


Text of error:


Secure Connection Failed

An error occurred during a connection to www.hvfcuonline.org. Cannot communicate securely with peer: no common encryption algorithm(s). Error code: SSL_ERROR_NO_CYPHER_OVERLAP

   The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
   Please contact the website owners to inform them of this problem.

Cannot connect to secure websites. https://www.hvfcuonline.org/tob/live/usp-core/app/initialLogin https://www.amtrak.com/ Under CENTOS 6.10 and RHEL6.9 (on two machines) using Firefox 60.2 ESL Tried setting numerous custom settings in config per previous posts and no help Ran in safe mode to eliminate plugins. First link only shows the problem after entering your login. amtrak link shows problem at page load. These are the only two sites I have seen the problem with. Text of error: ----------------------------------- Secure Connection Failed An error occurred during a connection to www.hvfcuonline.org. Cannot communicate securely with peer: no common encryption algorithm(s). Error code: SSL_ERROR_NO_CYPHER_OVERLAP The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem. ------------------------------------
Gekoppelde schermafbeeldingen

Aanvullende systeemdetails

Geïnstalleerde plug-ins

  • Citrix HDX Plugin (Linux) Version 13.4.0.10109380
  • DivX Web Player version 1.4.0.233
  • Free Gpws Plugin
  • Next Generation Java Plug-in 10.131.2 for Mozilla browsers
  • NPAPI Plugin DRVX
  • nspluginwrapper is a cross-platform NPAPI plugin viewer, in particular for linux/i386 plugins.This beta software is available under the terms of the GNU General Public License.
  • LabVIEW as Plug-in
  • Plugin for Installing Applications (new)
  • The Totem 2.28.6 plugin handles video and audio streams.
  • Shockwave Flash 29.0 r0
  • ibm global print plugin v4.1
  • This plug-in detects the presence of iTunes when opening iTunes Store URLs in a web page with Firefox.

Toepassing

  • Firefox 52.8.0
  • Useragent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Firefox/52.0
  • Ondersteunings-URL: https://support.mozilla.org/1/firefox/52.8.0/Linux/en-US/

Extensies

  • Application Update Service Helper 2.0 (aushelper@mozilla.org)
  • FlashGot 1.5.6.14 ({19503e42-ca3c-4c27-b1e2-9cdb2170ee34})
  • IBM CCK 2.4.1 (IBM-cck@firefox-extensions.ibm.com)
  • Lucifox 0.9.14 (Lucifox@lucidor.org)
  • Multi-process staged rollout 1.10 (e10srollout@mozilla.org)
  • NoScript 5.1.8.4 ({73a6fe31-595d-460b-a920-fcc0f8843232})
  • Pocket 1.0.5 (firefox@getpocket.com)
  • Redirect Linux GPWS 1.5.0 (RedirectLinuxGPWS@firefox-extensions.ibm.com)
  • Trimless for Google Mail™ 1.10.3 (trimless@jeremejevs.com)
  • Web Compat 1.0 (webcompat@mozilla.org)

Javascript

  • incrementalGCEnabled: True

Grafisch

  • adapterDescription: Intel Open Source Technology Center -- Mesa DRI Intel(R) Skylake Halo GT2
  • adapterDeviceID: Mesa DRI Intel(R) Skylake Halo GT2
  • adapterDrivers:
  • adapterRAM:
  • adapterVendorID: Intel Open Source Technology Center
  • crashGuards: []
  • currentAudioBackend: pulse
  • driverDate:
  • driverVersion: 2.1 Mesa 11.0.7
  • featureLog: {u'fallbacks': [], u'features': [{u'status': u'blocked', u'description': u'Compositing', u'log': [{u'status': u'blocked', u'message': u'Acceleration blocked by platform', u'type': u'default'}], u'name': u'HW_COMPOSITING'}, {u'status': u'unavailable', u'description': u'OpenGL Compositing', u'log': [{u'status': u'unavailable', u'message': u'Hardware compositing is disabled', u'type': u'default'}], u'name': u'OPENGL_COMPOSITING'}]}
  • info: {u'AzureCanvasAccelerated': 0, u'AzureCanvasBackend': u'skia', u'AzureFallbackCanvasBackend': u'none', u'CairoUseXRender': 0, u'AzureContentBackend': u'skia'}
  • numAcceleratedWindows: 0
  • numAcceleratedWindowsMessage: [u'']
  • numTotalWindows: 2
  • supportsHardwareH264: No
  • webgl2Renderer: WebGL creation failed: * Error during native OpenGL init. * Error during native OpenGL init. * Error during native OpenGL init. * Error during native OpenGL init. * Error during native OpenGL init. * Exhausted GL driver caps. * Exhausted GL driver options.
  • webglRenderer: Intel Open Source Technology Center -- Mesa DRI Intel(R) Skylake Halo GT2
  • windowLayerManagerRemote: True
  • windowLayerManagerType: Basic

Aangepaste voorkeuren

Div

  • User JS: nee
  • Toegankelijkheid: nee

Vraageigenaar

Update, RHEL6.9 is using Firefox 50.2, CENTOS6.10 is using 60.2.

Update, RHEL6.9 is using Firefox 50.2, CENTOS6.10 is using 60.2.
cor-el
  • Top 10 Contributor
  • Moderator
17855 oplossingen 161578 antwoorden

Works fine here.

This server only supports TLS 1.2, so make sure that TLS 1.2 is enabled.

There are TLS settings prefs on the about:config page that specify the minimum and maximum TLS version.

  • security.tls.version.min = 1
  • security.tls.version.max = 3 or 4
  • 1 means TLS 1.0; 2 means TLS 1.1; 3 means TLS 1.2; 4 means TLS 1.3;

You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.

Works fine here. This server only supports TLS 1.2, so make sure that TLS 1.2 is enabled. *https://www.ssllabs.com/ssltest/analyze.html?d=www.hvfcu.org *TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 *TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 There are TLS settings prefs on the <b>about:config</b> page that specify the minimum and maximum TLS version. *security.tls.version.min = 1 *security.tls.version.max = 3 or 4 *1 means TLS 1.0; 2 means TLS 1.1; 3 means TLS 1.2; 4 means TLS 1.3; You can open the <b>about:config</b> page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue. *http://kb.mozillazine.org/about:config

Vraageigenaar

Hi, Thank you for the reply,

I have tried a few different options for the tls security. Currently set to min=1, max=4 I included a snapshot with all the tls options.

I can get to the main page on the hvfcu page but cannot get to the login hvfcuonline page. The amtrak page will not even load. Using the ssl test page you provided I do see one thing in common. Also I noted the test page only tests the windows client.

Picture shows many fail connection: https://www.ssllabs.com/ssltest/analyze.html?d=www.hvfcuonline.org

Picture shows one fail connection: https://www.ssllabs.com/ssltest/analyze.html?d=www.amtrak.com

Does Firefox 60.2 and 50.2 under RHEL 6 look like any of these?

Thank you,

 Bart
Hi, Thank you for the reply, I have tried a few different options for the tls security. Currently set to min=1, max=4 I included a snapshot with all the tls options. I can get to the main page on the hvfcu page but cannot get to the login hvfcuonline page. The amtrak page will not even load. Using the ssl test page you provided I do see one thing in common. Also I noted the test page only tests the windows client. Picture shows many fail connection: https://www.ssllabs.com/ssltest/analyze.html?d=www.hvfcuonline.org Picture shows one fail connection: https://www.ssllabs.com/ssltest/analyze.html?d=www.amtrak.com Does Firefox 60.2 and 50.2 under RHEL 6 look like any of these? Thank you, Bart