BT Yahoo! customers stuck with old passwords
Old version of SSL renders site untrusted
Posted in Networks, 21st December 2006 16:01 GMT
See what The Register's experts have to say on application security
BT broadband customers are unable to change their password if they've upgraded to the latest web browser versions. The browsers refuse to connect to what they consider to be an insecure version of SSL which the site is using.
Attempting to visit BT's password changing site using IE 7 just gives a blank page, while Firefox 2 offers some explanation:
Firefox can't connect securely to register.btinternet.com because the site uses an older, insecure, version of the SSL protocol.
Opera 9 is the most helpful, with instructions on how to enable the insecure protocol. Switching to Opera was the advice given to one reader, who contacted BT to report the problem, though even Opera can't complete the process.
BT appeared unaware of the problem when we spoke to them, but has now said it's working on a fix. ®
Increase your knowledge of the latest threats to your busines


The future of SaaS and IT infrastructure management
The Total Economic Impact of Dell's PC products and services
The best practices guide for application security
Reducing messaging and web security costs with managed services

Win a Samsung C6625!
Is your cameraphone an oxymoron?
Reg Mobile and Wireless newsletter is go! go! go!
Sign up, sign up for The Register IT security newsletter