nanog mailing list archives
Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers
From: Michael O Holstein <michael.holstein () csuohio edu>
Date: Fri, 17 Jul 2015 20:48:24 +0000
Why do you upgrade your management systems asynchronously to your applications? You bring this on yourself.
Perhaps, but SaaS "management systems" are out of our control. They TELL us when they upgrade, they do not ASK. A web browser isn't really an application, you can't wait to upgrade. Related head-shaker .. the premier vendor of time management (who shall remain nameless) requires an outdated version of java that has a number of known vulnerabilities. They have been doing this for several years now.
Why do you access mission-critical systems that are provably insecure from systems that also have internet access?
Because they are "hosted" magical unicorn "cloud services" .. they ARE ON the Internet.
If it's not mission-critical, then you should explain why you haven't dumped that vendor yet for shipping insecure software - an insecurity that is very easy to mitigate by them, should they have chosen to.
Contracts, that's why. And it's not "shipping" anything .. these are "enterprise" cloud services that cost on the order of $50k-$100k per year. My $0.02 .. any reference to a company fictional or not is purely coincidental, etc. Michael Holstein Cleveland State University
Current thread:
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers, (continued)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Randy Bush (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Alexander Maassen (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Robert Drake (Jul 17)
- RE: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Matthew Huff (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Alexander Bochmann (Jul 19)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Jeff Gehlbach (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Alexander Maassen (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Geoffrey Keating (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Michael O Holstein (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Niels Bakker (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Michael O Holstein (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Alexander Maassen (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Matt Palmer (Jul 17)
- Re: Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers tqr2813d376cjozqap1l (Jul 17)
- Re: Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers George Metz (Jul 18)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Randy Bush (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Matt Palmer (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Michael O Holstein (Jul 17)
- Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Will M. (Jul 19)
- Re: Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers tqr2813d376cjozqap1l (Jul 19)
- RE: Re: SEC webpages inaccessible due to Firefox blocking servers with weak DH ciphers Drew Weaver (Jul 20)