D-Link VPN Router > DSR-250N
Cannot connect to admin console - weak encryption (logjam attack)
avonord:
I can't believe there is no other thread on this. My browser can no longer connect to the admin console of my DSR250. It gives the following error. There are work arounds for firefox (and maybe chromes as well). But if you want to an iPhone to manage the router, you are out of luck. When will Dlink come out with a new firmware that address this?
"Secure Connection Failed
An error occurred during a connection to 192.168.0.1. SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key)
The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
Please contact the website owners to inform them of this problem."
gregster:
I was just wondering the same thing. I got in to the admin interface using Opera, and I've seen references to an override that you can set up in Firefox, but these are not permanent solutions.
I tried using the certificate generator (in Advanced -> Certificates, but the documentation is appalling and I haven't been successful - in fact I don't even know if this is intended to address router owners that want to change this cert or just for VPNs).
So I don't have a solution, but I figure I should add my voice. How about it D-Link?
FurryNutz:
Link>Welcome!
* What Hardware version is your router? Look at sticker under the router case.
* Link>What Firmware version is currently loaded? Found on the routers web page under status.
* What region are you located?
PC Web Browser Configurations
What browser are you using?
Try Opera or FF? If IE 8, 9, 10 or 11, set compatibility mode and test again.
Disable any security browser Add-ons like No Script and Ad-Block or configure them to allow All Pages when connected to the router.
Clear all browser caches.
Be sure to log into the Admin account on the router.
Try turning off these features in Chrome:
Top right corner, little bars for options > Settings > Settings (on left) > Show advanced settings.
Uncheck these:
Use a web service to help resolve navigation errors
Use a prediction service to help complete searches and URLs typed in the address bar
Predict network actions to improve page load performance
Enable phishing and malware protection
Also...
http://www.ghacks.net/2015/04/15/chrome-42-blocks-java-silverlight-other-plugins-by-default-now/
Since this is a business class routers it may be that it only supports desktop browser management at this time. Not much call for management of business class routers from remote locations. Most Management of business class routers are on site and during business hours when needed. Not sure if D-Link would have anything for mobile apps regarding this. This would be something you would have to talk to D-Link directly on the phone about.
CBET:
Hello,
After firmware update with the latest version (2.01_WW) on my DSR-250n I have the same 'Diffie-Hellman key' problem with Chrome and FF also. I do not think that disabling some security settings in browsers are good solution!
I just wondering if D-Link support will fix this bug in near future with next firmware update?
FurryNutz:
It's recommend that you phone contact your regional D-Link support office and ask for help and information regarding this. We find that phone contact has better immediate results over using email or FB> https://www.facebook.com/mydlink?fref=ts.
Let us know how it goes please.
--- Quote from: CBET on September 16, 2015, 12:19:37 PM ---Hello,
After firmware update with the latest version (2.01_WW) on my DSR-250n I have the same 'Diffie-Hellman key' problem with Chrome and FF also. I do not think that disabling some security settings in browsers are good solution!
I just wondering if D-Link support will fix this bug in near future with next firmware update?
--- End quote ---
Navigation
[0] Message Index
[#] Next page
Go to full version