Project

General

Profile

Firefox 39 secure websockets issue

Igor Khomenko
Added over 3 years ago

We have got the Firefox 39 websockets issue, now wss it's not working with Tigase

We use http://strophe.im/strophejs/ as the XMPP web library and now in Firefox 39 we receive Strophe.Status.CONNFAIL with error description "SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message."

Do you have any ideas what to do?


Replies (3)

Added by Andrzej Wójcik IoT 1 CloudTigaseTeam over 3 years ago

This issue appeared due to the fact that new versions of web browsers (Firefox, Chrome and others) increased security requirements from ciphers used for HTTPS/WSS connection encryption.

To fix this issue it is required to use newest versions of Tigase XMPP Server as JDK 8 is required to be able to use required ciphers.

I also suggest to unlock strong cryptography in Java by installation of Java Cryptography Extension (JCE) Unlimited Strength Jurisdiction Policy Files to increase number of supported strong encryption ciphers.

Added by Igor Khomenko over 3 years ago

Thanks Andrzej

we use Tigase 7.0.0

we updated JDK on server to 8 and looks like it works now

    (1-3/3)