Chrome 45, released today, now blocks weak DH keys under 1024 bits.
Based on tests from the week of August 10th, the following 77 Alaskan
sites will now produce an error in Chrome and will not be reachable.
This is the error:
Server has a weak ephemeral Diffie-Hellman public key
ERR_SSL_WEAK_SERVER_EPHEMERAL_DH_KEY
This error can occur when connecting to a secure (HTTPS) server. It
means that the server is trying to set up a secure connection but, due
to a disastrous misconfiguration, the connection wouldn't be secure at
all!
In this case the server needs to be fixed. Google Chrome won't use
insecure connections in order to protect your privacy.
[end of error]
Background and mitigation info can be found at https://weakdh.org/ .
The sites are as follows (in alphabetical order)
akalpinelodge.com
akdesktops.bannerhealth.com
alaskanmalamute.org
alaskausareports.ultiprotime.com
alaskavaporsalliance.com
alaskavaporsalliance.info
alaskavaporsalliance.net
alaskavaporsalliance.org
backmaps.511ride.alaska.gov
backup.511ride.alaska.gov
bhview.bannerhealth.com
bugs.asi-hsv.com
calendars.k12northstar.org
cityofbarrow.org
cityofsitka.com
climate.iarc.uaf.edu
connect.nrim.com
denalitek.com
drgeorgestransky.com
eingang.uui-alaska.com
g2const.com
geekinsideproductions.com
geeks907.com
hp092366.gi.alaska.edu
inupiatgov.com
kachemaknordicskiclub.org
kbrw.org
livingstonslone.com
mail.geeks907.com
mail.matsutitle.com
mail.rainierconnect.net
manageit.entint.com
mantechmechanical.com
maps.511ride.alaska.gov
mobility.alaskaheart.com
monitorit.entint.com
n-central.structured.com
nwc-vueadmin.users.nome.uaf.edu
p6.aicllc.com
paragonpropertiesinc.com
ps.ideafamilies.org
ps.jsd.k12.ak.us
ps.juneauschools.org
pw.matsuk12.us
pwr.asrc.com
pwr.asrcfederal.com
pwr.iaminupiaq.com
remote.alaskaheart.com
reset.gethotwired.com
scanhome.com
sitka.net
sslvpn.hccontractors.net
sslvpn.kakivik.com
survbase.com
sutus.com
swallingcpas.com
techgn.com
techgnorth.com
tempo.arcticslope.org
valdezheliskiguides.com
vdi.dol.alaska.gov
vdiview.stantec.com
video.denalifcu.com
view.akwater.com
view.tekmate.net
visitkasilofalaska.com
voipalaska.com
vpn.yukonac.com
watchit.entint.com
watercolor.gi.alaska.edu
web.akalpinelodge.com
webctrl.sphosp.org
webvac.muni.org
wrrb-212-cm25-1.ospd.gi.alaska.edu
xtr.correct.state.ak.us
yakandyetialaska.com
zmail.k12northstar.org
Inversely sorted by domain component, they are:
p6.aicllc.com
akalpinelodge.com
web.akalpinelodge.com
view.akwater.com
mobility.alaskaheart.com
remote.alaskaheart.com
alaskavaporsalliance.com
bugs.asi-hsv.com
pwr.asrc.com
pwr.asrcfederal.com
akdesktops.bannerhealth.com
bhview.bannerhealth.com
cityofsitka.com
video.denalifcu.com
denalitek.com
drgeorgestransky.com
manageit.entint.com
monitorit.entint.com
watchit.entint.com
g2const.com
geekinsideproductions.com
geeks907.com
mail.geeks907.com
reset.gethotwired.com
pwr.iaminupiaq.com
inupiatgov.com
sslvpn.kakivik.com
livingstonslone.com
mantechmechanical.com
mail.matsutitle.com
connect.nrim.com
paragonpropertiesinc.com
scanhome.com
vdiview.stantec.com
n-central.structured.com
survbase.com
sutus.com
swallingcpas.com
techgn.com
techgnorth.com
alaskausareports.ultiprotime.com
eingang.uui-alaska.com
valdezheliskiguides.com
visitkasilofalaska.com
voipalaska.com
yakandyetialaska.com
vpn.yukonac.com
hp092366.gi.alaska.edu
wrrb-212-cm25-1.ospd.gi.alaska.edu
watercolor.gi.alaska.edu
climate.iarc.uaf.edu
nwc-vueadmin.users.nome.uaf.edu
backmaps.511ride.alaska.gov
backup.511ride.alaska.gov
maps.511ride.alaska.gov
vdi.dol.alaska.gov
alaskavaporsalliance.info
alaskavaporsalliance.net
sslvpn.hccontractors.net
mail.rainierconnect.net
sitka.net
view.tekmate.net
alaskanmalamute.org
alaskavaporsalliance.org
tempo.arcticslope.org
cityofbarrow.org
ps.ideafamilies.org
ps.juneauschools.org
calendars.k12northstar.org
zmail.k12northstar.org
kachemaknordicskiclub.org
kbrw.org
webvac.muni.org
webctrl.sphosp.org
ps.jsd.k12.ak.us
xtr.correct.state.ak.us
pw.matsuk12.us
Royce
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Tue Sep 1 16:19:19 2015
This archive was generated by hypermail 2.1.8 : Tue Sep 01 2015 - 16:19:19 AKDT