Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Cisco devices (RV082RV042, ...) & diffie-helman (firefox & safari)

Hi,

 

I have reported to Cisco support that I can't access anymore to some Cisco devices (like RV082 routers) due to the diffie-helman weak.

Here a explaination (to bypass the issue) : https://support.mozilla.org/fr/questions/1071500

But is it not possible to bypass (or I don't know how) with safari (iPhone, iPad, ...and probably on Macbook, ...)

 

I have just spent my time to explain to Cisco support the fact that this issue concerning most devices, theys just reply to me I need to furnish a serial number with a proof of purchase. I gived to us 3 serials (because I have many Cisco products installed for many customers, but no luck 2 not anymore under warranty, and the lastest "NOT already in her database") and I think is it comprenhensible, I don't want to search in thousand of items/invoices to find one !

What's kind of services is it?

Are you (Cisco) taking care of customer ?

RV082 is not a high and professional product, but is it not also a home user product I think.

I think when a customer reported a issues who's concerning a large amount of product and thousand and thousand customers... they must be take in care.. NO ?

So, please Cisco do your job, and release all firmware of concerning devices ASAP !

 

An unhappy customer.

3 REPLIES
New Member

Use internet explorer?

Use internet explorer?

New Member

Of course...using some others

Of course...using some others navigators like IE is a temporary "workarround"... (as IE is less picky for SSL than Firefox or Safari).

But ... if Microsoft make an update too ! they will be not accessible anymore too...

And, this is not the issue....because it's a security flaw, and MUST be corrected by Cisco !

Also... sometime when I have no PC or laptop and I need to access some router I use my iPhone or i Pad. And this not possible anymore also !

New Member

Not disagreeing with you, but

Not disagreeing with you, but like you said, the RV series is a bit of in between consumer grade product and an enterprise product. So not the core focus of patches might not be here in the first place but instead of the enterprise products. They do use weak cryptography in a lot of these things it's not a flaw in the sense that Cisco has done anything wrong from an implementation point of view, it's just that browser are pushing the demands for higher security settings. It's more of a compatibility issue than anything else, hence my comment, use Internet explorer. I don't see MS removing support for a long time. I think you still have at least 2 years "enabled by default support" for old crypto in IE, then probably a few more years of configuring to use old crypto. Basically I think the RV will be replaced before IE drops support.

All this said, I'd like Cisco to increase the cryptography for certificates as well, for now though, fiddle around with FF/Chrome in "about:config" or use IE. Workaround is what you're stuck with.

103
Views
0
Helpful
3
Replies
CreatePlease to create content