New issue
Advanced search Search tips

Issue 711266 link

Starred by 2 users
Status: WontFix
Owner: ----
Closed: Apr 2017
Cc:
elawrence@chromium.org
rsleevi@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Windows
Pri: 2
Type: Bug



Sign in to add a comment

NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM Errore di privacy, connessione non privata

Reported by e.g.elec...@gmail.com, Apr 13 2017 
UserAgent: Mozilla/5.0 (Windows NT 6.1; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3; rv:11.0) like Gecko

Steps to reproduce the problem:
1. any website, chrome not working

What is the expected behavior?
Internet Explorer works correctly
Tried to unistall chrome, tried to disable antivirus and chrome extensions.
Cleaning tool not find anything wrong.

What went wrong?
Not possible to enter in any website.

This the error:

La connessione non è privata

Gli autori di un attacco potrebbero cercare di rubare le tue informazioni (ad esempio password, messaggi o dati della carta di credito) da www.google.it. NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM

Did this work before? N/A 

Chrome version: 57.0.2987.133  Channel: n/a
OS Version: 6.1 (Windows 7, Windows Server 2008 R2)
Flash Version:
la connessione non è privata.JPG
34.1 KB View Download

Comment 1 by elawrence@chromium.org, Apr 13 2017

Cc: elawrence@chromium.org
Components: Internals>Network>Certificate
Labels: -Type-Bug-Security -Restrict-View-SecurityTeam Needs-Feedback Type-Bug
This most likely explanation here is that your browser is configured to run through a proxy (either antivirus software or something run by your company or school) that is running outdated code that re-encrypts your traffic using outdated SHA-1 certificates. Chrome stopped accepting SHA-1 certificates, which leads to the error message described.

The simplest way for us to see what's going on is to click on the NET::ERR_CERT_WEAK_SIGNATURE_ALGORITHM text; it will expand to show more debugging information (see https://textslashplain.com/2017/03/30/get-help-with-https-problems/ for more details if needed). 

If you can add that information to this bug, I can help you further.

Comment 2 by e.g.elec...@gmail.com, Apr 13 2017 

Subject: www.google.com

Issuer: Kaspersky Anti-Virus Personal Root Certificate

Expires on: 28 giu 2017

Current date: 13 apr 2017

PEM encoded chain:-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Ah so it could be the antivirus fault!

2017-04-13 16:56 GMT+02:00 elawre… via monorail <
monorail+v2.271331812@chromium.org>:
Project Member

Comment 3 by sheriffbot@chromium.org, Apr 13 2017

Labels: -Needs-Feedback
Thank you for providing more feedback. Adding requester "elawrence@chromium.org" to the cc list and removing "Needs-Feedback" label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 4 by rsleevi@chromium.org, Apr 13 2017

Labels: Needs-Feedback
Yes, it is your antiviruses fault.

Note this particular antivirus product has had other critical security issues in the past - http://www.zdnet.com/article/project-zero-calls-out-kaspersky-av-for-ssl-interception-practices/

Depending on the version of Kaspersky Anti-Virus you're using, https://support.kaspersky.com/6851 may be useful. Disabling the "Scan encrypted connections" option should restore connectivity.

On newer versions, it may be listed under "Web Anti-Virus" as "Check Secure Connections (HTTPS)". You want to disable that, if it's enabled.

Comment 5 Deleted

Project Member

Comment 6 by sheriffbot@chromium.org, Apr 13 2017

Cc: rsleevi@chromium.org
Labels: -Needs-Feedback
Thank you for providing more feedback. Adding requester "rsleevi@chromium.org" to the cc list and removing "Needs-Feedback" label.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

Comment 7 by e.g.elec...@gmail.com, Apr 13 2017 

yes, I was writing you saying that I solved the problem disabling it!


2017-04-13 17:20 GMT+02:00 Elisa Gardiman <e.g.electricity@gmail.com>:

Comment 8 by e.g.elec...@gmail.com, Apr 13 2017 

thank you very much! the reason was the one you said!

2017-04-13 17:21 GMT+02:00 Elisa Gardiman <e.g.electricity@gmail.com>:

Comment 9 by rsleevi@chromium.org, Apr 13 2017

Status: WontFix (was: Unconfirmed)
Alrighty! Closing this as WontFix then :)

Sign in to add a comment