Ubuntu
apache2 package

certificate authentication tls1.2 browser ie 11

Bug #1259076 reported by Stéphane
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
apache2 (Ubuntu)
Incomplete
Undecided
Unassigned

Bug Description

Hello,

Our server is Ubuntu 12.04 LTS Precise Pangolin which is up to date and is running Apache2. We have a bug with internet explorer 11 (version 11.0.9600.16438 - 11.0.1 (KB2888505)) when authenticate on https://www.e-legalite.com (one of our web sites) using certificate authentication. Indeed, once certificate selected in the dialog box, client can't log and after verification our server doesn't received certificate information, it appears that there is problem during the https negotiation. If we disable "Use TLS 1.2" at tools / internet /advanced options, the problem disappears. At the moment, we have that problem with internet explorer 11 and 10. On chrome, firefox, it works well and the connection used is TLS v1.2.

Could you help us please?

Thanks in advance.
Stéphane Taprest

Revision history for this message
Robie Basak (racb) wrote :

Thank you for your report.

It could be that this is a bug in Ubuntu, but it is not clear from your report. This would require further detailed investigation, but I don't think it's reasonable to consider it a bug over a local misconfiguration just yet.

You can find pointers to get help for this sort of problem here: http://www.ubuntu.com/support/community

There isn't really enough information here for a developer to confirm this issue is a bug, or to begin working on it, so I am marking this bug Incomplete for now.

If you believe that this is really a bug, then you may find it helpful to read "How to report bugs effectively" http://www.chiark.greenend.org.uk/~sgtatham/bugs.html. We'd be grateful if you would then provide a more complete description of the problem, explain why you believe this is a bug rather than a problem specific to your system, and then change the bug status back to New.

Changed in apache2 (Ubuntu):
status: New → Incomplete
Revision history for this message
Stéphane (stephane-taprest) wrote :

Hello,

We have found the problem. On newer versions of their browser, microsoft blocks the use of certificate based on the hash algorithm md5 with tls 1.2 protocol so the connections fail because the certificate is not presented to the server. So I tried to disable the tls1.2 on the server, but this feature is not yet implemented on ubuntu 12.04 LTS release. A bug has been done to this address: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1200136. When do you think this could be done?

Thank you for your help and have a nice day

Stéphane Taprest

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.