11 November 2015

Zimbra Admin Error : Diffie-Hellman key in Server Key Exchange handshake message

Ketika Membuka zimbra admin , muncul error seperti dibawah ini :
Secure Connection FailedAn error occurred during a connection to Server Zimbra. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key)    The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.    Please contact the website owners to inform them of this problem.
ketika saya menggunakan Firefox Ver 42.
Berdasarkan penjelasan dari support Mozilla , ini semacam celah keamanan SSL. saat firefox update aplikasi tersebut meningkatkan keamanan celah Diffie-Hellman

Diffie–Hellman key exchange (D–H) [nb 1] is a specific method of securely exchanging cryptographic keys over a public channel and was one of the first public-key protocols as originally conceptualized by Ralph Merkle.[1][2] D–H is one of the earliest practical examples of public key exchange implemented within the field of cryptography. Traditionally, secure encrypted communication between two parties required that they first exchange keys by some secure physical channel, such as paper key lists transported by a trusted courier. The Diffie–Hellman key exchange method allows two parties that have no prior knowledge of each other to jointly establish a shared secret key over an insecure channel. This key can then be used to encrypt subsequent communications using a symmetric key cipher.

Workaround for Firefox 39 and above:
1) In FireFox, enter "about:config" in the URL field and press enter.
2) Accept the "This might void your warranty!" warning :)
3) In the search field at the top, enter "security.ssl3.dhe_rsa_aes"
4) Double click each result (128 and 256) to toggle the Value to "false"
Now retry your site - it should work now. Remember to change these settings back when you're done.

 Setelah itu restart firefox , kemudian Accept Certtified




