An error occurred during a connection to ceqccm. Weak ephemeral DH key


  1. reeoploit
    Posts : 12
    64 Bit
       New #1

    An error occurred during a connection to ceqccm. Weak ephemeral DH key


    Hi,

    When I navigate to a CISCO Admin page for CISCO Phones on Mozilla Firefox I receive this error:


    I do know how to get around it and these are the steps I use:

    (1) In a new tab, type or paste about:config in the address bar and press Enter. Click the button promising to be careful.

    (2) In the search box above the list, type or paste dhe and pause while the list is filtered

    (3) Double-click the security.ssl3.dhe_rsa_aes_128_sha preference to switch it from true to false (disable Firefox from using this cipher)

    (4) Double-click the security.ssl3.dhe_rsa_aes_256_sha preference to switch it from true to false (disable Firefox from using this cipher)
    Is there any downside or vulnerabilities that will occur after doing this?

    Thanks
      My Computer
    Quote Quote

  3. Roderunner
    Posts : 2,362
    Win7 H.Prem. 32bit+SP1
       New #2

    try the link in IE
      My Computer
    Quote Quote

  4. Alejandro85
    Posts : 2,468
    Windows 7 Ultimate x64
       New #3

    Quite the opposite, it's good advice to do so.
    Both protocols that you're disabling are from the SSL3 family, which have been proven insecure and obsolete. By disabling such protocol, you're in fact increasing your security, by not trusting a potentially insecure connection (this is why the browser complains originally).

    As for the downsides, by disabling a protocol you're effectively prevented of using sites that rely on those exclusively. Obviously you lose those pages, but also you cannot fall into the trap of believing a site is secure when it's actually not.
      My Computer
    Quote Quote

  6. reeoploit
    Posts : 12
    64 Bit
    Thread Starter
       New #4

    Alejandro85 said:
    Quite the opposite, it's good advice to do so.
    Both protocols that you're disabling are from the SSL3 family, which have been proven insecure and obsolete. By disabling such protocol, you're in fact increasing your security, by not trusting a potentially insecure connection (this is why the browser complains originally).

    As for the downsides, by disabling a protocol you're effectively prevented of using sites that rely on those exclusively. Obviously you lose those pages, but also you cannot fall into the trap of believing a site is secure when it's actually not.
    Hi,

    Thanks for your reply.. wow I did not realize that increases security. Should I ALWAYS have it disabled? How do you have it?

    Thanks
      My Computer
    Quote Quote

  7. Alejandro85
    Posts : 2,468
    Windows 7 Ultimate x64
       New #5

    sinfulangle said:
    Hi,

    Thanks for your reply.. wow I did not realize that increases security. Should I ALWAYS have it disabled? How do you have it?

    Thanks
    I would simply leave it disabled permanently, until there is a strong reason to bring it back. Basically, having a broken security protocol enabled creates a false sense of security, and by disabling it you avoid that pitfall. So yes, disable it always.
    I have since long forgot about SSL3, and not missed it a bit really. I've also recently begin disabling all but the newest TLS 1.2 (disabled TLS 1 and 1.1 in addition to SSL3) and so far, my web experience remains the same.
      My Computer
    Quote Quote

 

  Related Discussions
I recently re-installed windows and am now trying to install the DirectX End-User Runtimes (June 2010). All goes well, it installs everything, but as it finished I get this error: http://i.imgur.com/KVkYk.png I have tried redownloading, using other installers and updating my graphics drivers....
My wifi has suddenly stopped connecting to my laptop. It works perfectly on my phone and other computers, so I know it's not the router. I've renewed my IP address, uninstalled and reinstalled all the correct drivers, double checked my network settings, restarted my computer in safe mode with...
i just installed google chrome from online installer and then i moved the file using application mover to the HDD.. then i pasted a symlink in "C:\Program Files (x86)\" ... "C:\" is the SSD where the windows and the drivers are installed.... when i turn on chrome everything works file.. but the...
My internet connection is very weak and can i can move only 10 meters before connection is gone. Almost everywhere, my signal is only showing 1 bar while the laptop's of others are 3 or 4 bars if not full. I am now forced to use a direct cable from my internet to my laptop. This is good sometimes...
Hi, wheny try to enable ICS for the WLan or for the LAN adapter, I get the error message(s) An error occurred while Internet Connection Sharing was being enabled Acess is denied After that the option Allow other network users to connect throug...... is once again unchecked.
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 15:03.
Find Us