Hi Christopher As you can see on your SSLLabs Report, your server is forcing weak RC4 ciphers. Thats why Firefox will show a warning instead of the green address bar. In future, Firefox will refuse to connect to insecure servers. You may visit https://wiki.mozilla.org/Security/Server_Side_TLS for further information about SSL/TLS security.
Regards Jonas Am 07.05.15 um 13:39 schrieb [email protected]: > Hi, > > For one of our domains, we have reissued an old GeoTrsut SHA-1 EV certificate > to get the green address bar in all browsers again. > > This worked well for all browsers except firefox. > > This url for example: > https://secure.bytro.com/fileadmin/templates/supremacy_1914/images/201_newShop/shop_pic_header_complete.jpg > > is green in Chrome, IE, etc. but not in Firefox. Instead FF pretends that > there is no certificate for that domain at all. > > > The certificate itself is reported as valid by various external checkers: > https://www.sslshopper.com/ssl-checker.html#hostname=secure.bytro.com > > Or more detailed: > https://www.ssllabs.com/ssltest/analyze.html?d=secure.bytro.com&s=85.195.103.2 > https://www.ssllabs.com/ssltest/analyze.html?d=secure.bytro.com&s=85.195.103.3 > > The whole chain uses sha256 and we tested it on 10 different PCs in our > office. Works for Chrome, does not work for FF. > > > Any feedback will be appreciated. > > Thank you, > Christopher > _______________________________________________ > dev-security-policy mailing list > [email protected] > https://lists.mozilla.org/listinfo/dev-security-policy _______________________________________________ dev-security-policy mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security-policy
