the site https://www.bank-verlag.de/ according to the Qualys SSL test at https://www.ssllabs.com/ssltest/analyze.html?d=bank-verlag.de supports these cipher suites:
Qualys says this is a perfectly valid cipher suite. Only older OpenSSL libs, Windows XP Clients, Android 2 and Java 6 will be unable to connect.
Unfortunately MWG 18.104.22.168.0 is unable to connect too. There is no match between the cipher suites the OpenSSL lib in MWG supports and the TLS_ECDHE_RSA_* suites because no elliptic curves are compiled into the OpenSSL package.
Could someone please have a look into this?
P.S.: the workaround is to tunnel this host. But naturally I would prefer a solution over a workaround. :-)
I have to reiterate on this topic. We now have multiple sites supporting EC ciphers only we cannot to anymore without setting up a SSL tunnel. But for some of them it's out of question and therefore impossible to reach like https://www.ricardo.ch. I have opened a ticket with our support partner who will escalate to McAfee.
Will there be a chance to get support for EC on 7.4 or do I have to expect being forced going to 7.5? It's just about planning.
Hi Michael, I tried PMing you and it wouldn't let me.
We too are having a similar issue with all websites hosted via cloudflare that require this suite.
Do you have an update on the status of this?