VIvaldi still can not open a pages that use SSL / RC4



  • This webpage is not available ERR_SSL_VERSION_OR_CIPHER_MISMATCH Hide details A secure connection cannot be established because this site uses an unsupported protocol or cipher suite. This is likely to be caused when the server needs RC4, which is no longer considered secure. while other browser is can (firefox) just an axemple: https://www.loverslab.com/index.php?app=core&module=global§ion=register when compatibility issues with encryption protocols will be eliminated? Thanks for attention.


  • Moderator

    May a (bad+dangerous) solution: start Vivaldi by desktop shortcut with insecure chromium parameter. Config example see http://www.1337admin.org/windows/windows-7/allow-chrome-to-load-insecure-content/

    But thats DANGEROUS!
    You will have insecure SSL for ALL connections.
    It is your decsision if you want SSL connections on which someone can steal your login data on shops, banks, etc.

    PS: I'm ashamed to give such bad advice, but you want it.



  • Works fine here on Windows 10 X6 with Vivaldi X64

    Connection
    Protocol
    TLS 1.2
    Key Exchange
    ECDHE_ECDSA
    Cipher Suite
    CHACHA20_POLY1305
    Certificate
    Subject
    sni40265.cloudflaressl.com
    SAN
    sni40265.cloudflaressl.com
    *.51av.us
    Show more (39 total)
    Valid From
    Tue, 09 Feb 2016 00:00:00 GMT
    Valid Until
    Sun, 14 Aug 2016 23:59:59 GMT
    Issuer
    COMODO ECC Domain Validation Secure Server CA 2



  • "Still"? The title of this thread is odd, since it phrases it as if it's something Vivaldi should change, but Vivaldi is correct in not supporting (by default) ciphers now known to be vulnerable to attack. Trusting such ciphers, like Gwen-Dragon warned, is dangerous.

    Some sites might still support RC4 (particularly if the browser doesn't demand TLS 1.1+) to support old browsers, but newer versions of browsers have been dropping support for it, for good reason.


  • Moderator

    @denczy:

    when compatibility issues with encryption protocols will be eliminated? Thanks for attention.

    NEVER!
    It is not a browser problem, insecure ciphers will be blocked byOS or/and browsers now or in near future.
    This is a configuration problem of the webserver using such old and insecure ciphers.

    The URL you mentioned above has no problem with current Vivaldi 1.0.403.15! It uses TLS and a high secure cipher.

    I dont know where you need SSL3 +RC4 in our days.


Log in to reply
 

Looks like your connection to Vivaldi Forum was lost, please wait while we try to reconnect.