Gaia Portal cannot load showing ERR_SSL_VERSION_OR_CIPHER_MISMATCH error in the browser

     Symptoms
  • Vulnerability scan shows that machine running Gaia OS is vulnerable to CVE-2013-2566 - SSL RC4 Cipher Suites are supported by Gaia Portal.


  • Web browsers with disabled RC4 cipher are not able to connect to Gaia Portal.
    Example from Google Chrome browser when connecting to Gaia Portal:
    This site can't provide a secure connection
    X.X.X.X uses an unsupported protocol.
    ERR_SSL_VERSION_OR_CIPHER_MISMATCH
    
    And when clicking on DETAILS:
    Unsupported protocol
    The client and server don't support a common SSL protocol version or cipher suite.
    
    This is likely to be caused when the server needs RC4, which is no longer considered secure.

    Cause
    1. The CRIME attack requires executing attacker agent component inside the victim's web browser.
      Attack may be mitigated by disabling SSL/TLS compression in the web browser or a on the web server.
      All web browsers' vendors have released versions that disable SSL/TLS compression. Therefore, this vulnerability is not relevant today.
      Some vulnerability scanners may report Gaia Portal to be vulnerable to CVE-2012-4929 / CVE-2012-4930 / CVE-2013-2566.
      However, since this attack requires a non-patched browser, and all browsers are patched today, such reports are false positive.
    2. Web browser vendors deprecate the use of RC4 Cipher Suites based on RFC 7465 - Prohibiting RC4 Cipher Suites:
      BrowserBranch / TimelineReferences
      Google ChromePlanned to be
      removed
      in branch 53
      Mozilla FirefoxPlanned to be
      removed
      in branch 44
      Internet Explorer,
      Microsoft Edge
      Planned to be
      disabled
      in 2016
      (Security Update
      is available)





If you Still face same issue then after applied these changes once reboot the device. 
Leave a comment for any query. 


Comments

  1. This comment has been removed by the author.

    ReplyDelete
  2. I faced an error message (Connection cannot be initiated) when first time login on SmartDashboard to connect with my Security Management which is installed on VM.

    help me.

    ReplyDelete

Post a Comment

Popular posts from this blog

Download IOS Image for Router

tcpdumps in Checkpoint Firewall