TLS handshake failed ERR_SSL_protocol_error
-
Hi, I am trying to set up mail account with optusnet.com.au and get the following message
incoming server failed. IMAP server responded with: could not open socket: TLS handshake failed ERR_SSL_protocol_error Have the correct port numbers and the system time and date are correct. Doing this on a PC with windows 10 -
With that error message, it is likely that the server does not support TLS 1.2 or TLS 1.3, which are the ONLY SSL/TLS protocol versions now supported. That is something that can only be fixed by the site/mail owner. I have not been able to test the server with the name you, but mail.optusnet.com.au post 993 does work, and uses TLS 1.3, so you may need to correct the server name.
-
I am using Opera mail, microsoft outlook, and Gmail to connect to the same server with SSL/TLS, and using the POP3 option, just tried to add the account with the POP option and if failed with the same problem. Only downloaded Vivaldi a couple of days ago so should be the latest version 6.1.3035.302.
-
@BrianAllan67
Hi, Opera mail, microsoft outlook, and Gmail still can "speak" TLS 1.1, the Vivaldi mail client cant.
Did you try the different server @yngve mention?Cheers, mib
-
Opera Mail (M2) is based on the Opera Presto browser engine, which has not been maintained for 10+ years. It supports TLS 1.2 (not TLS 1.3), which means it will be able to talk to current sites until TLS 1.2 is eventually deprecated, too. It also support several now obsolete deprecated (and unsecure) SSL/TLS versions.
Microsoft Outlook will be using whatever TLS version is enabled in the Windows version it is running on. And Windows 11 will start disabling TLS 1.0 and TLS 1.1 by default later this year.
Gmail is the same, and it is probably only a matter of time until they disable TLS 1.0 and 1.1 server side.
Vivaldi (and its Mail Client) is based on Chromium, and the code to support TLS 1.0 and 1.1 was removed completely 6 months ago, TLS 1.2 is now the oldest protocol supported.
BTW, To clarify: I was completely unable to connect to the secure IMAP port (993) on optusnet.com.au (connection refused), and there was no imap.optusnet.com.au host, only mail.optusnet.com.au . If other names and ports are to be used, you will have to provide details.
Also: ANY website or email service that does not support at least TLS 1.2 is too old to be trusted. TLS 1.2 was published in 2008, so any server that does not support it is at least 14 years old, and probably has security best described as swiss cheese (and that is probably an insult to the cheese). TLS 1.3 was defined in 2018, which means that any server not supporting it is at least 4-5 years out of date. Might not be as swiss cheese as a TLS 1.2-only server, but .... shouldn't be trusted, either.
-
Hi Thanks for the clarification on the security levels. There is only the one server, mail.optusnet.com.au. So I will go back to them and see if they can figure out what's going on
-
@BrianAllan67 mail.optusnet.com.au IMAP port 993 supports TLS 1.2 (I misread some info output earlier), so Vivaldi should be able to connect to it.
You may want to doublecheck and make sure the imap server name is correctly configured in the mail account server panel.
