[182412] in North American Network Operators' Group
SEC webpages inaccessible due to Firefox blocking servers with weak
daemon@ATHENA.MIT.EDU (Matthew Huff)
Thu Jul 16 11:45:29 2015
X-Original-To: nanog@nanog.org
From: Matthew Huff <mhuff@ox.com>
To: "nanog@nanog.org" <nanog@nanog.org>
Date: Thu, 16 Jul 2015 15:45:20 +0000
Errors-To: nanog-bounces@nanog.org
Just ran into this issue this morning. The SEC requires companies to file E=
DGAR reports on https://edgarfiling.sec.gov. The newer versions of Firefox =
won't let you access the webpages without manually going into about:config =
and re-enabling the weak ciphers. Given the recent issue with the OPM, I wo=
uld think this would be a very bad follow-up if the SEC got hacked.
SSLLabs gives the website an "F". IE 11 won't work either (for other reason=
s). https://www.ssllabs.com/ssltest/analyze.html?d=3Dedgarfiling.sec.gov
The website looks like it was designed in the '90s. I've tried to reach out=
to their contacts (webmaster, oig, etc...) but haven't gotten a reply yet.=
It's possible that I might get a reply eventually, but does anyone have an=
y direct contacts at the SEC?
----
Matthew Huff=A0=A0=A0=A0=A0=A0=A0=A0=A0=A0=A0=A0 | 1 Manhattanville Rd
Director of Operations=A0=A0=A0| Purchase, NY 10577
OTA Management LLC=A0=A0=A0=A0=A0=A0 | Phone: 914-460-4039
aim: matthewbhuff=A0=A0=A0=A0=A0=A0=A0 | Fax:=A0=A0 914-694-5669
