Can not reach router due to Logjam attach fix



  • Now that Vivaldi has deployed fixes for the Logjam attack. how do I reach my router at 192.168.0.1 I get a warning [quote]Secure Connection Failed An error occurred during a connection to 192.168.0.1. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key) [/quote]


  • Vivaldi Team

    @jpaulbiss:

    Now that Vivaldi has deployed fixes for the Logjam attack. how do I reach my router at 192.168.0.1

    I get a warning

    Secure Connection Failed

    An error occurred during a connection to 192.168.0.1. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key)

    Yes, security has a price, often in form of inconvenience like in this case. All new browsers will eventually have this issue, and it will remain an issue until the router manufacturers catch up with newer firmware. In the meantime all I can say is use an older browser for access to your router until you get a firmware update fixing it (which you will have to install using an older browser), or you get a new router with firmware that handles it. Sorry that I do not have any better for you than a workaround.

    //Christian - Vivaldi Technologies

    Vivaldi - Take your browser back!



  • Mozillla has added protection for it in it's browser.
    which can be disabled by going to about:config in Firefox (no http/https, just copy/paste), and disabling the following values.
    security.ssl3.dhe_rsa_aes_128_sha
    security.ssl3.dhe_rsa_aes_256_sha

    Does Vivaldi have an equivalent?
    There is no way I am buying a new router so that I can log into it maybe twice a year for 15 or 20 minutes. D-link doesn't have a firmware up grade out yet for this router yet



  • The Logjam fix nags my old router and some managed switches and NAS.

    Some ability to set exceptions for such "insecure" sites/IPs would be nice in Vivaldi.



  • Found a workaround. But …
    Use only für internal use in your own LAN, because it makes the SSL ciphers less safe!

    You can read http://superuser.com/questions/966855/force-chrome-to-ignore-a-weak-ephemeral-diffie-hellman-public-key to "fix" this for all Chromium, Vivaldi on all OS.


Log in to reply
 

Looks like your connection to Vivaldi Forum was lost, please wait while we try to reconnect.