Closed Bug 1109373 Opened 10 years ago Closed 8 years ago

Some Turkish government sites uses old TLS implementation

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: yuhongbao_386, Unassigned)

References

(
URL
)

Details

Yuhong Bao

Reporter

Description

•

10 years ago

Some Turkish government sites uses a TLS implementation that has bug 946147, meaning it pays attention to only one byte of the ciphersuite list provided in the ClientHello. Given that the sites also support insecure renegotiation and only supports 3DES and RC4 ciphersuites, it is likely that the TLS implementation is old and should be upgraded: https://www.ssllabs.com/ssltest/analyze.html?d=https://www.uyap.gov.tr https://www.ssllabs.com/ssltest/analyze.html?d=avukat.uyap.gov.tr

:Cykesiopka

Updated

•

10 years ago

Status: UNCONFIRMED → NEW

Ever confirmed: true

Yuhong Bao

Reporter

Comment 1

•

10 years ago

Interestingly, this bug also cause problems with Googlebot.

Karl Dubost💡 :karlcow

Comment 2

•

8 years ago

https://avukat.uyap.gov.tr/avukat/index.jsp has been fixed. And https://www.uyap.gov.tr has been fixed too.

URL: https://www.uyap.gov.tr

Status: NEW → RESOLVED

Closed: 8 years ago

Resolution: --- → FIXED

Nobody; OK to take it and work on it

Assignee

Updated

•

6 years ago

Product: Tech Evangelism → Web Compatibility

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Some Turkish government sites uses old TLS implementation

Categories

(Web Compatibility :: Desktop, defect)

Tracking

(Not tracked)

People

(Reporter: yuhongbao_386, Unassigned)

References

(
URL
)

Details

Crash Data

Security

(public)

User Story

Description

Updated

Comment 1

Comment 2

Updated