Internet Explorer 6 SP1 may stop responding when you try to connect to a secure Web site (842607)
The information in this article applies to:
- Microsoft Internet Explorer 6.0 SP1, when used with:
- the operating system: Microsoft Windows XP SP1
SYMPTOMSWhen you try to use Microsoft Internet Explorer 6 Service Pack 1 (SP1) to connect to a secure Web site (https://), Internet Explorer may stop responding (hang).CAUSEThis problem may occur when the use of Federal
Information Processing Standard (FIPS) encryption algorithms is enforced through the Computer Configuration Security Options policy.
Some Secure Sockets Layer (SSL) implementations send a zero-length packet as the first message over an SSL connection. This behavior occurs only when a block cipher such as Triple Data Encryption Standard (Triple DES) is used, and is intended as a workaround for a known block cipher chaining vulnerability. The Internet extensions for the Wininet.dll file does not interpret this zero-length packet correctly.WORKAROUNDTo successfully connect to a secure Web site, disable the system policy that requires FIPS-compliant algorithms. To do this, follow these steps: - Click Start, and then click Control Panel.
- Click Performance and Maintenance.
- Click Administrative Tools.
- Double-click Local Security Policy.
- Expand Local Policies.
- Click Security Options.
- In the Policy list, double-click System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing.
- Click Disabled, and then click OK.
- Restart your computer.
| Modification Type: | Major | Last Reviewed: | 2/18/2005 |
|---|
| Keywords: | kbtshoot kbprb KB842607 kbAudEndUser |
|---|
|