I am relating to Application and invalid certificate errors
When i initiate the call with Twilio REST API, and then pick up the phone, i can hear that error occured and Certificate Invalid - Could not find path to certificate appears in my alert dashboard.
However, certificate is located in the mozila certificate program, i can find certificate at Public All Intermediate Certs List. I dont use self signed certificate.
As soon as i disable SSL Certificate Validation inside Twilio Console Account settings, the problem is gone.
My result from qualys ssl lab are:
Summary:
- This server is vulnerable to the POODLE attack. If possible, disable SSL 3 to mitigate. Grade capped to C.
- This server accepts RC4 cipher, but only with older protocols. Grade capped to B.
- The server does not support Forward Secrecy with the reference browsers.
- This server's certificate chain is incomplete. Grade capped to B.
Configuration:
- SSL 3 INSECURE
Cipher Suites:
- TLS_RSA_WITH_3DES_EDE_CBC_SHA (0xa) WEAK
- TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (0x16) DH 4096 bits FS WEAK
- TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (0xc012) ECDH secp256r1 (eq. 3072 bits RSA) FS WEAK
- TLS_RSA_WITH_RC4_128_SHA (0x5) INSECURE
- TLS_ECDHE_RSA_WITH_RC4_128_SHA (0xc011) ECDH secp256r1 (eq. 3072 bits RSA) FS INSECURE
Protocol details:
- Secure Renegotiation Supported
- POODLE (SSLv3) Vulnerable INSECURE SSL 3: 0xa
- Downgrade attack prevention Yes, TLS_FALLBACK_SCSV supported
- RC4 Yes INSECURE
- Forward Secrecy With some browsers
Shall i disable SSL or do you have any ideas what can i do?
