09-07-2015 08:10 AM
Hi. Changes in both Firefox and Chrome prevent to access the RV042 V03 web interface (Firmeware version: v4.2.1.02 Jan 18 2012 14:10:55) , throwing the following error: "Server has a weak ephemeral Diffie-Hellman public key".
Does anybody successfully implement a fix for this issue? Thanks in advance. Martin.
09-08-2015 07:12 AM
I was able to connect to my router from another computer with an older version of Firefox. Once there, I went to the Firewall tab and changed HTTPS from enable to disable.
I'm now able to access my router from the new version of Google Chrome, but I worry what security I may have given up by making this change.
09-08-2015 07:27 AM
Hi, you can try the following:
Type the URL given below in your browser's address bar:
about:config
Accept the securty warning
Here in this config page, you will find a list of boolean entries. Search ssl3 and specifically for below two entries:
security.ssl3.dhe_rsa_aes_128_sha
security.ssl3.dhe_rsa_aes_256_sha
Then make a right click on each and change the value from True to False selecting revert.
Let me know if that help
09-25-2015 11:22 AM
I'm using the RV042-G, and OS-X Yosemite. I've tried Chrome and Safari and get the same D-H error. I used an old version of Chrome and was able to update the Firmware.
Problem persists.
09-08-2015 07:27 AM
Hi, you can try the following:
Type the URL given below in your browser's address bar:
about:config
Accept the securty warning
Here in this config page, you will find a list of boolean entries. Search ssl3 and specifically for below two entries:
security.ssl3.dhe_rsa_aes_128_sha
security.ssl3.dhe_rsa_aes_256_sha
Then make a right click on each and change the value from True to False selecting revert.
Let me know if that help
09-10-2015 12:35 PM
Worked for me. I had to wait a min or so until the settings took effect on the browser.
Thanks
10-12-2015 08:35 PM
Hello,
All well and good to dumb down the browser's security, but what are you setting yourself up for in the wild west of the internet.
I am having trouble with brand new RV042's fresh out of the box, not older legacy gear.
I updated the firmware and the browsers, and finally dragged an old laptop out and logged in and switched of https.
I am using these routers for PPTP and the firewall disables remote log gin on the WAN.
I can log in on the LAN side with http.
So my browsers are still set for paranoia security levels, and I can log in off the LAN side ok.
So what is Cisco going to do to fix their SSL ?
Dave
09-10-2015 08:07 PM
Here is a link to an excellent article about the Server has a weak ephemeral Diffie-Hellman public key error.
12-18-2015 08:23 PM
so why are all the posts about work-arounds and circumventing security settings. Is there no fix for this?
Why has @cisco not responded to this issue? The new firmware still has this issue. I can still buy these routers. why should i do so?
Is there a fix?
12-18-2015 08:48 PM
The only thing you can do right now is disable https in the routers Firewall menu tab.
Use http
I refuse to dumb down a browsers security.
I tried to get Cisco to answer the question and they didn't even acknowledge the problem.
Use a complex password.
12-19-2015 09:50 AM
The latest firmwares fixes this issue.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide