AnsweredAssumed Answered

Protocol or cipher suite mismatch for IE 6 / XP after disabling SSLv3 protocol

Question asked by Lewis Rosenthal on Oct 17, 2014
Latest reply on Oct 18, 2014 by Lewis Rosenthal

Greetings, all...

 

Server is running Apache 2.2.29 / OpenSSL 1.0.1j. I have the following in my SSL conf:

 

SSLProtocol ALL -SSLv2 -SSLv3

SSLHonorCipherOrder On

SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES: \
DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS

 

While I do score an A+ (100, 85, 80, 90), I'm puzzled as to why IE 6 /XP shows as:

 

Protocol or cipher suite mismatch

 

I understand that out of the box, IE 6 won't do TLS, but is this the reason for the mismatch? I'm just not catching on. Perhaps something extraneous in my (remaining) ciphers?

 

Thanks!

Outcomes