Opera M2 users - security protocols
-
Sorry mods, this is for Opera 12 & Opera Mail 1.0 solving an M2 issue. I think it might be relevant for some M2 veterans that still hang out here. I don't have an account on the Opera forum. @sgunhouse I think you are still active in the Opera forum? If so, maybe this can help some poor soul there, too.
We have quite a few M2 users left in my family (good job former me!) and we have a mail service provider giving all of us a family mail address firstname@familyname.....
All of a sudden after a server update, I was the only one who could still access mail with Opera 12 / M2. For the others, the server wouldn't even connect as I saw in the incoming log files.It turned out that for whatever reason the others did not have the relevant TLS ciphers enabled.
Fix: go to Opera 12 / Opera Mail 1.0 Settings -> Advanced Tab, Security section, click on "security protocols"
Then make sure you have the TLS protocols enabled (I didn't check exactly which caused the issue), and hit the "details" button
Finally, make sure all the checkboxes are checked in the ciphers column.
-
OMG such powerful settings, available to humble users!
How on earth could they take the risk making such powerful and destructive options available to us poor destructive users!
Imagine if someone went through and unchecked all those ciphers, because they thought it was bad for privacy or whatever. What destruction and chaos would ensue!
How could Opera even trust users with such powerful tools at their disposal. No, I think Google and Chromium does it much better hiding all this very dangerous stuff away from us ignorant peasant who do not live in the Silicon Valley tech bubble of developer bros.
-
@wildente Nice tip Only an addition: standalone Opera Mail .1044 hasn't these settings, but I'm not worried too much as I really hope to [totally] migrate to M3 soon or later :3
But probably aren't too much relevant for mailer as it should use the best cipher available; no risk of someone lowering to insecure SSL/TLS version. -
@hadden89 hmmmm correct. I wonder if installing Opera 12.1x (get it while Opera still has the ftp server up on ftp.opera.com) and just copying over the mail folder works. Never tried that.
Ah well. -
@wildente You should not exactly check all checkboxes or even TLS 1 and 1.1 nowadays ... those may allow downgrade attacks to be used on your connection. I know that this is not a realistic danger for most users, but especially RC4 (and MD5 to some extend) should be refrained from. Better just check what is actually supported by the mail server[s] and activate this one [these ones] only.
-
@jumpsq all that program is still good for is email via imap or pop (but pretty good for that), so direct connection with a known server. I think the risk is rather low but good to point it out
-
Keep in mind, Opera Mail for Windows had two later security updates which already did this. But otherwise ... security isn't specifically a mail setting, copying only the mail directory wouldn't do this. You could copy and paste the appropriate sections into the .ini file, that would work.
-
If anyone is still using the original version, you can still get the update from the archives.
https://ftp.opera.com/ftp/pub/opera/mail/1.0/win/
The 1.0.1044 version number is the second update, they seem to have dropped the earlier update.
-
You do realize that the latest version of TLS is 1.3, right?
-
@streptococcus we are talking about an email program that has been discontinued and last got a minor security fix 2016
-
@wildente Released in 2013, two updates in 2016, and not updated since.