New issue
Advanced search Search tips

Issue 764203 link

Starred by 1 user

Issue metadata

Status: WontFix
Owner: ----
Closed: Sep 2017
Components:
EstimatedDays: ----
NextAction: ----
OS: Windows
Pri: 2
Type: Bug



Sign in to add a comment

ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY in Chrome 49

Reported by daryl.y...@gmail.com, Sep 12 2017

Issue description

UserAgent: Mozilla/5.0 (Windows NT 6.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36

Steps to reproduce the problem:
1.  go to https://mygameplan.ca/
2. ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY
3. 

What is the expected behavior?
i should go to the website.. it works on my phone and a different browser

What went wrong?
tried going to the site 
and then it didnt connect to it and gave me an error code
ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY

Did this work before? N/A 

Chrome version: 49.0.2623.112  Channel: n/a
OS Version: 6.0 (Windows Vista, Windows Server 2008)
Flash Version: Shockwave Flash 21.0 r0
 
Components: Internals>Network>HTTP2
Labels: -Type-Bug-Security -Restrict-View-SecurityTeam Type-Bug
Status: WontFix (was: Unconfirmed)
Summary: ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY in Chrome 49 (was: ERR_SPDY_INADEQUATE_TRANSPORT_SECURITY)
This site loads properly in modern versions of Chrome. 

Chrome 49 is dangerously out-of-date and has many unpatched security vulnerabilities. Unfortunately, you'll need to upgrade to a more modern (and supported) version of Windows to run a modern version of Chrome.

Using HTTP2 successfully requires using TLS/1.2 with certain cipher suites:
https://cs.chromium.org/chromium/src/net/spdy/chromium/spdy_session.cc?l=1317&rcl=a00d6fa0a60f520958721cf380dedfe7981e353c

This site has a bug when loaded in ancient versions of Chrome whereby it uses a banned cipher suite:
"Chrome 49 / XP SP3	Server negotiated HTTP/2 with blacklisted suite
RSA 2048 (SHA256)   |  TLS 1.2 > h2    |  TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA  |  ECDH secp256r1" https://www.ssllabs.com/ssltest/analyze.html?d=mygameplan.ca

Sign in to add a comment