Forum Discussion
L__G_
Altostratus
AltostratusDisplay a warning on client browser when cipher suite mismatch
Hello, We have a ssl profile with a very limited ciphers suite (TLS1.2, TLS1.3 and other limitations). Is it possible to display a warning message on a browser when there is no match between browse...
Hello L__G_
When you use an HTTPS scheme in your browser, you are asking the browser to perform a TLS handshake before sending any HTTP traffic. If both ciphers don't match, you will receive a TLS Alert during the TLS handshake and the connection will be interrupted.
To respond with a specific message, you should send somehow an HTTP traffic response without encryption, but you cannot respond with an HTTP packet because:
1. Your TLS handshake was finished abruptly
2. In HTTP, you only respond to queries that were initiated by the client, and you didn't send any query to the server because the TLS was interrupted.So, this is technically restricted by the protocol.
Hello L__G_
When you use an HTTPS scheme in your browser, you are asking the browser to perform a TLS handshake before sending any HTTP traffic. If both ciphers don't match, you will receive a TLS Alert during the TLS handshake and the connection will be interrupted.
To respond with a specific message, you should send somehow an HTTP traffic response without encryption, but you cannot respond with an HTTP packet because:
1. Your TLS handshake was finished abruptly
2. In HTTP, you only respond to queries that were initiated by the client, and you didn't send any query to the server because the TLS was interrupted.
So, this is technically restricted by the protocol.
L__G_Altostratus
AltostratusHello Diaro_Garrido.
After my readings, I didn't have high hopes on this point. Thank you for your help.