Secure Connection Failed
I have run across a few websites that result in "Secure Connection Failed" when I try to go to them. The last site on which this happened is the following. Using the shorter URL "https://e.ab.advancedbionutritionals.com" also shows the problem.
What I see on the error message page is this:
Secure Connection Failed An error occurred during a connection to e.ab.advancedbionutritionals.com. Cannot communicate securely with peer: no common encryption algorithm(s). Error code: SSL_ERROR_NO_CYPHER_OVERLAP
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem.
I can get to this site using other browsers like Chrome and Safari. What bothers me here is the text "Cannot communicate securely with peer: no common encryption algorithm(s)". This makes me believe that Firefox is not supporting an encryption algorithm, which other browsers do. The question is: why does Firefox not support the same set of encryption algorithms, which other browsers do?
All Replies (4)
SSL_ERROR_NO_CYPHER_OVERLAP Your server apparently doesn't offer any cipher suites necessary to establish a secure https connection that are supported in Firefox. You can check what kind of cipher suites Firefox can make use of by visiting; https://www.ssllabs.com/ssltest/viewMyClient.html
Firefox will just show the SSL_ERROR_NO_CYPHER_OVERLAP error when encountered any site using the RC4 cipher.
There is security software like Avast, Kaspersky, BitDefender and ESET that intercept secure connection certificates and send their own.
https://support.mozilla.org/en-US/kb/firefox-cant-load-websites-other-browsers-can
https://support.mozilla.org/en-US/kb/firefox-and-other-browsers-cant-load-websites
https://support.mozilla.org/en-US/kb/secure-connection-failed-error-message
https://support.mozilla.org/en-US/kb/connection-untrusted-error-message
Websites don't load - troubleshoot and fix error messages
http://kb.mozillazine.org/Error_loading_websites
Just one question: both the Chrome and Safari browsers can connect to the https://e.ab.advancedbionutritionals.com site. Does this mean that these browsers are honoring a request from the site to use an RC4 cipher suite which the Firefox developers have judged is not secure? That is, that cipher suite is not included in Firefox, for security reasons?
I have not attempted to contact anyone at the subject site who knows what cipher suite(s) it wants to use. Unfortunately, when Firefox quits with that error message, it does not provide explicit information about what cipher suite that site's web server wants to use. Is there any way to query a site about which cipher suite it wants to use?
Similar programs do the same thing, but differently. Firefox is a bit more strict for security reasons.