MozillaZine

Is it possible to upgrade Certificates in an older Firefox?

User Help for Mozilla Firefox
LIMPET235
Moderator

User avatar
 
Posts: 38454
Joined: October 19th, 2007, 1:53 am
Location: The South Coast of N.S.W. Oz.

Post Posted August 30th, 2018, 7:17 am

Hi guys 'n' gals,
A quick Q? re; my old Firefox v20.
I am experiencing a few instances where "any site" I go to gives me messages such as...
Secure Connection Failed
An error occurred during a connection to http://www.businessinsider.com.

Cannot communicate securely with peer: no common encryption algorithm(s).

(Error code: ssl_error_no_cypher_overlap)

&...
Secure Connection Failed
An error occurred during a connection to forums.aardvark.co.nz.

Peer reports incompatible or unsupported protocol version.

(Error code: ssl_error_protocol_version_alert)


Is this down to the old/er Certificates or something else?
Possibly Digicert/Symantec & Associated partners being termed as "Un-trusted" by "Mozilla/Firefox" now?
Is it possible to update the old/er Certificates in v20 to the later v57 or v61.......IF this is the problem?

Ta muchly..
Ancient Amateur Astronomer
Win-7-HP/Intel® DualCore-2.0GHz/500G HDD/4 Gig Ram/550Watt PSU/350WattUPS/Firefox-20.0-57.0-61.0-62.0/T-bird-2.0.0.24/SnagIt-v10.0.1/MWP-7.11.0.
RadioYachting. (Always choose the "Custom" Install.)

trolly
Moderator

User avatar
 
Posts: 39899
Joined: August 22nd, 2005, 7:25 am

Post Posted August 30th, 2018, 7:20 am

I guess the sites changed to TLS handshake and V20 only supports SSL.
Think for yourself. Otherwise you have to believe what other people tell you.
A society based on individualism is an oxymoron. || Freedom is at first the freedom to starve.
Constitution says: One man, one vote. Supreme court says: One dollar, one vote.

LIMPET235
Moderator

User avatar
 
Posts: 38454
Joined: October 19th, 2007, 1:53 am
Location: The South Coast of N.S.W. Oz.

Post Posted August 30th, 2018, 7:23 am

Hi trolly,
Thanks for that info.
Can't say that I understand it but thanks anyway. :)
I suppose it has more to do with Security?, than old/er Certificates?

It's getting like the latest cars are now all computer controlled & are very, no, extremely complicated,
compared to the "older" cars, where one could actually repair/fix/tune them yourself.
Ancient Amateur Astronomer
Win-7-HP/Intel® DualCore-2.0GHz/500G HDD/4 Gig Ram/550Watt PSU/350WattUPS/Firefox-20.0-57.0-61.0-62.0/T-bird-2.0.0.24/SnagIt-v10.0.1/MWP-7.11.0.
RadioYachting. (Always choose the "Custom" Install.)

tomatoshadow2

User avatar
 
Posts: 357
Joined: May 11th, 2017, 9:52 am

Post Posted August 30th, 2018, 7:26 am

Yeah, current Nightly has also automatically started distrusting certain certificates as well.

LIMPET235
Moderator

User avatar
 
Posts: 38454
Joined: October 19th, 2007, 1:53 am
Location: The South Coast of N.S.W. Oz.

Post Posted August 30th, 2018, 7:31 am

Hi TS2,
I know. I am currently watching Steve Gibson's latest vodcast, #678, in which he mentions that particular item.
Firefox v63 is where it all starts.

All the same for later Chrome versions...68 or so?
Ancient Amateur Astronomer
Win-7-HP/Intel® DualCore-2.0GHz/500G HDD/4 Gig Ram/550Watt PSU/350WattUPS/Firefox-20.0-57.0-61.0-62.0/T-bird-2.0.0.24/SnagIt-v10.0.1/MWP-7.11.0.
RadioYachting. (Always choose the "Custom" Install.)

trolly
Moderator

User avatar
 
Posts: 39899
Joined: August 22nd, 2005, 7:25 am

Post Posted August 30th, 2018, 8:03 am

The TLS vs SSL problem has to do with security. A SSL handshake can be broken and then the connection is unprotected. TLS does not have this problem (yet).
Think for yourself. Otherwise you have to believe what other people tell you.
A society based on individualism is an oxymoron. || Freedom is at first the freedom to starve.
Constitution says: One man, one vote. Supreme court says: One dollar, one vote.

morat
 
Posts: 2911
Joined: February 3rd, 2009, 6:29 pm

Post Posted August 30th, 2018, 8:24 am

Firefox 20 supports TLS 1.0. SSL 2.0 and SSL 3.0 are insecure.

The business insider site only supports TLS 1.2.

SSL, TLS and web browsers
http://en.wikipedia.org/wiki/Transport_Layer_Security#Web_browsers

Difference between SSL, TLS and HTTPS
http://security.stackexchange.com/questions/5126

TLS server test (open ip address link in new tab to view summary)
https://www.ssllabs.com/ssltest/
https://www.ssllabs.com/ssltest/analyze.html?d=www.businessinsider.com

TLS browser test (mouseover "Yes" next to TLS 1.3 to view draft number)
https://www.ssllabs.com/ssltest/viewMyClient.html

LIMPET235
Moderator

User avatar
 
Posts: 38454
Joined: October 19th, 2007, 1:53 am
Location: The South Coast of N.S.W. Oz.

Post Posted August 30th, 2018, 8:47 am

Thank you to all who replied.
Much appreciated.
I shall just have to use one of my later versions when I strike trouble with v20
& hope that it/she/he keeps on functioning in here.....after this site/fora gets upgraded. ;)
Ancient Amateur Astronomer
Win-7-HP/Intel® DualCore-2.0GHz/500G HDD/4 Gig Ram/550Watt PSU/350WattUPS/Firefox-20.0-57.0-61.0-62.0/T-bird-2.0.0.24/SnagIt-v10.0.1/MWP-7.11.0.
RadioYachting. (Always choose the "Custom" Install.)

James
Moderator

User avatar
 
Posts: 27435
Joined: June 18th, 2003, 3:07 pm
Location: Made in Canada

Post Posted August 30th, 2018, 3:27 pm

Firefox did not support TLS 1.2 by default until Fx 27.0 and TLS 1.3 (draft-23) as of Fx 60.0

Return to Firefox Support


Who is online

Users browsing this forum: Bing [Bot], Google Adsense [Bot], robobox and 20 guests