From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!.POSTED!not-for-mail From: Jimmy Yuen Ho Wong Newsgroups: gmane.emacs.bugs Subject: bug#31946: 27.0.50; The NSM should warn about more TLS problems Date: Fri, 29 Jun 2018 06:21:38 +0100 Message-ID: References: <87fu1apchn.fsf@gmail.com> <83in65r4n9.fsf@gnu.org> <87y3f1njku.fsf@gmail.com> <87tvpnojgt.fsf@gmail.com> NNTP-Posting-Host: blaine.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset="UTF-8" X-Trace: blaine.gmane.org 1530249743 29139 195.159.176.226 (29 Jun 2018 05:22:23 GMT) X-Complaints-To: usenet@blaine.gmane.org NNTP-Posting-Date: Fri, 29 Jun 2018 05:22:23 +0000 (UTC) Cc: 31946@debbugs.gnu.org, Noam Postavsky To: Lars Ingebrigtsen Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Fri Jun 29 07:22:19 2018 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by blaine.gmane.org with esmtp (Exim 4.84_2) (envelope-from ) id 1fYlrO-0007Tn-Nm for geb-bug-gnu-emacs@m.gmane.org; Fri, 29 Jun 2018 07:22:18 +0200 Original-Received: from localhost ([::1]:40018 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1fYltW-00037J-1h for geb-bug-gnu-emacs@m.gmane.org; Fri, 29 Jun 2018 01:24:30 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:57929) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1fYls9-0002Gt-MP for bug-gnu-emacs@gnu.org; Fri, 29 Jun 2018 01:23:09 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1fYls6-00054Y-5T for bug-gnu-emacs@gnu.org; Fri, 29 Jun 2018 01:23:05 -0400 Original-Received: from debbugs.gnu.org ([208.118.235.43]:59498) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1fYls6-00054C-1P for bug-gnu-emacs@gnu.org; Fri, 29 Jun 2018 01:23:02 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1fYls5-0002o8-Rf for bug-gnu-emacs@gnu.org; Fri, 29 Jun 2018 01:23:01 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Jimmy Yuen Ho Wong Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Fri, 29 Jun 2018 05:23:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 31946 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: security Original-Received: via spool by 31946-submit@debbugs.gnu.org id=B31946.153024973510719 (code B ref 31946); Fri, 29 Jun 2018 05:23:01 +0000 Original-Received: (at 31946) by debbugs.gnu.org; 29 Jun 2018 05:22:15 +0000 Original-Received: from localhost ([127.0.0.1]:39162 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1fYlrG-0002mk-Ay for submit@debbugs.gnu.org; Fri, 29 Jun 2018 01:22:14 -0400 Original-Received: from mail-io0-f170.google.com ([209.85.223.170]:44697) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1fYlrB-0002m9-Fw for 31946@debbugs.gnu.org; Fri, 29 Jun 2018 01:22:08 -0400 Original-Received: by mail-io0-f170.google.com with SMTP id q19-v6so14053ioh.11 for <31946@debbugs.gnu.org>; Thu, 28 Jun 2018 22:22:05 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=1Z2uHCOnXZ0MOjUofXg6jTIjjS0UZls4JBrg8+uFzC0=; b=F0hod92oUlLiSMv117aNK7HbRUc9fAzYjwao2SVlE+oQVO6iG3ojFtQtqrCJPb7A+T r/2lVyyyOJIvSosXhl+wsJ89WNjpwseUqbc+ARWGYrUN/SQcHkOX6SLbjTwNO85PepFZ rHC2AFPv3BixS2fNOmKKV9l3UJIxjO90mS0wvjE3yK2SuqR8EWuycqso/vbXLfYNPTXn H6qEi4BSIwbCkt6jZOK2Phz5qKPlHiRP20JZlPZkEjnVZnYDXcke8SzceI/Myd6+smv6 50pBXEXpDEuh9EN90srTVl+td84kuZm5GDU09qsT4eS33qo8qPf4CMYpYNSvoeIzLRwr 8CMg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=1Z2uHCOnXZ0MOjUofXg6jTIjjS0UZls4JBrg8+uFzC0=; b=Zj6Jrqkj6zyg4KXYLT2oNSGsAUpnsvhvlgMubSF9qwKhcBskIj+d7P/xAOIBw2ZNP5 VQ5YBVK2ji06MFk37tksI2Q8e1sbvBj6RkEIsjQwrHN4oAISRFI3kmfUqhsbJSxKYpSU U90+hjsJueYEd+o46TQ6368PQrHvljphNcUfTyFDKmubYPsODs8AAh9wJexdsALpg5yX HFhp0eqqKjHjsm4S8REMTI54Fzr/707xGxM61nDlqKw8YCziEP0URDgQtIRhBMygGIGo kloL/4J5wURXUr4xGDfOlWuvWYRbe9Qt6vjF+TkxU6HGSYxY+ys8WHrYLSTUxrtGrlHK 2tkA== X-Gm-Message-State: APt69E1k5++qKCsUsRnBhyPQkp4jQVywQmdC09OMPstnaiCflSVpb9fe DsVDEthbrBv22lVQsrSoZXlDy7+CXBlU5BD9Wnc= X-Google-Smtp-Source: AAOMgpdOJ+c+S+ZavjQRG4B4X3aWk+MLJ/6HyrG2HxWyoPClpY+HOVnkrdoyQ0sfBbu5SMffcPIh42uaOqdOd9BM998= X-Received: by 2002:a5e:9812:: with SMTP id s18-v6mr10892945ioj.117.1530249719520; Thu, 28 Jun 2018 22:21:59 -0700 (PDT) Original-Received: by 2002:a02:985d:0:0:0:0:0 with HTTP; Thu, 28 Jun 2018 22:21:38 -0700 (PDT) In-Reply-To: X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 208.118.235.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.org gmane.emacs.bugs:147935 Archived-At: Update: I just tried with this node.js script: #! /usr/bin/env node const https = require('https'); const fs = require('fs'); const options = { key: fs.readFileSync('ryans-key.pem'), cert: fs.readFileSync('ryans-cert.pem'), ciphers: "DHE-RSA-AES128-GCM-SHA256" }; https.createServer(options, (req, res) => { res.writeHead(200); res.end('hello world\n'); }).listen(8000); Chrome gave me a ERR_SSL_VERSION_OR_CIPHER_MISMATCH, Firefox gave me a SSL_ERROR_NO_CYPHER_OVERLAP, Safari just told me it can't establish a connection. Conversely, changing DHE to ECDHE will at least show me the warning screen for a self-signed cert, so I'm fairly certain now that these 3 browsers have removed DHE KX. Heads up: I'm adding about 10 new checks into NSM ATM. Will send a early preview patch here later today for feedback. On Thu, Jun 28, 2018 at 7:15 PM, Jimmy Yuen Ho Wong wrote: > The Telemetry data[1] from Mozilla in bug report 1227519[2] suggests > DHE usage is very low for HTTP. No data for any other protocol. > > I just used Wireshark on Chrome and Firefox on macOS, they all seem to > advertise DH and DHE cipher suites in Client Hello for TLS 1.2, they > even advertise CBC mode ciphers too. While I'm not sure about Firefox, > surely Chrome has removed DHE_SHA KX and CBC modes according to > ChromeStatus[3]? > > > [1]: https://tlscanary.mozilla.org/runs/2018-01-25-01-21-44/ > [2]: https://bugzilla.mozilla.org/show_bug.cgi?id=1227519 > [3]: https://www.chromestatus.com/features#tls > > On Thu, Jun 28, 2018 at 6:01 PM, Lars Ingebrigtsen wrote: >> Jimmy Yuen Ho Wong writes: >> >>>> I can't see that that web page mentions Diffie-Hellman at all? >>>> >>> >>> Click on the individual browsers. >> >> I see. >> >>> SSLLabs only reports that Firefox 59 / Win 7 has dropped support for >>> DHE_RSA in the UA capabilities page[1], but client test[2] still shows >>> it is supported, so does Chrome and Safari. I don't understand what's >>> going on there. Could that list in in client test be static? Or that >>> browsers still advertise their support for DHE_RSA when in fact they >>> don't? Might have to get on a server and log out the TLS handshake to >>> see what's actually going on... >>> >>> [1]: https://www.ssllabs.com/ssltest/clients.html >>> [2]: https://www.ssllabs.com/ssltest/viewMyClient.html >> >> My >> >> Chromium 66.0.3359.117 (Developer Build) built on Debian 9.4, >> running on Debian 9.4 (64-bit) >> >> on the viewMyClient reports not supporting DHE-RSA. >> >> Confusing. :-) >> >> I tried finding a web site that says how many sites do not support ECDHE >> as key exchange, and only found something from 2014 that says that was >> 60%... >> >> -- >> (domestic pets only, the antidote for overdose, milk.) >> bloggy blog: http://lars.ingebrigtsen.no