"A secure connection cannot be established because this site uses an unsupported protocol"
-
sgunhouse Moderator Volunteer last edited by
Opera 12 identifies the encryption as 128 bit ARC4, which is extremely weak at best (though as old as Opera 12 is, it will accept it). Firefox will connect, but also says the encryption is extremely weak (and displays a yellow "caution" triangle over the security icon). Chrome does not show a special icon, but when you click the padlock for security details does say the encryption used is obsolete. Hmm ... of the 3, I think Firefox handles it best (lets you connect but also makes it obvious something is wrong). But that's me - as a company Opera has always erred on the side of caution. There is something to be said for knowing your so-called secure connection really is secure.
-
toyo last edited by
Maybe I should send an email to the webmaster there. I doubt they feel like changing anything however as long as it works on everything but the new Opera.
-
blackbird71 last edited byMaybe I should send an email to the webmaster there. I doubt they feel like changing anything however as long as it works on everything but the new Opera.
By all means, send them an eMail and reference this thread. But don't expect too much response until an issue like this starts to hit them wherever it matters most to them. A lot of sites will only fix their site/server code when enough users are having problems blocking them from the site, such that the site's hit counts and user stats start declining significantly.
-
enottagain last edited by
Hello
After looking through many screens and doing a search this seems the nearest post to my question. I am trying to access an American site but Opera brings up a security warning "Server Certificate chain incomplete. verify.authorize.net". I assume it must be Opera raising this as other browsers do not show it and Kaspersky Security applies to all. This does not show in my certificte management and I do not know anything about this company so have not accepted it as I am not sure how genuine it is. Its logo (click) button now appears as a payment merchant on the web site I have dealt with satisfactorily several times in the past over a number of years. Does anybody know of this organisation and if it is safe to accept please? -
A Former User last edited by
Opens fine in Opera 34.0.2036.25 no error msgs
what version of Opera are you running
I see it using TLS 1.0 RC4-128 HMAC-SHA1 RSA 2048
-
toyo last edited by
Opens fine in Opera 34.0.2036.25 no error msgs
what version of Opera are you running
I see it using TLS 1.0 RC4-128 HMAC-SHA1 RSA 204835.0.2066.10 beta. I suppose posters above maybe used the Beta as well? maybe they changed something, dunno.
-
-
enottagain last edited by
Hello
Thanks for the replies so far. I stayed with Opera version 12.17 as I have hundreds of bookmarks and did not like the new system when they did away with bookmarks and everything had to be fitted in speed dial which was impractical for my needs. 12.17 meets all my requirements and this is the only problem I have had.
I note that the authorize.net icon/logo on the website in question trainvideodepot.com is there on the home page but when you return to that page it has disapeared which raises my suspicions. I gather now that a friend has also had this problem of a certificate warning also using Kaspersky but probably not opera. Strangely however this only happens in Opera and not with Firefox or Vivaldi if I can mention such names here. Hence my suspicions it was raised by Opera. Somehow two entries for authorize.net had been loaded into my Local Settings\Application Data\Opera folder which in User was hidden as were protected Operating System files. One was an .png file the other a .idx. These have been deleted and had not returned but in Opera the warning still arises I did not accept the certificate, rejected it and closed the browser. I now need to check these again having seen the problem arise once more. -
lando242 last edited by
everything had to be fitted in speed dial which was impractical for my needs
Opera added normal bookmarks several releases back. You can import them from the old version of Opera pretty easily.
-
blackbird71 last edited by
... I am trying to access an American site but Opera brings up a security warning "Server Certificate chain incomplete. verify.authorize.net". I assume it must be Opera raising this as other browsers do not show it and Kaspersky Security applies to all. This does not show in my certificte management and I do not know anything about this company so have not accepted it as I am not sure how genuine it is. ...
... I gather now that a friend has also had this problem of a certificate warning also using Kaspersky but probably not opera. Strangely however this only happens in Opera and not with Firefox or Vivaldi if I can mention such names here...
This may all have to do with the site's cert specifying 3DES-EDE-CBC with HMAC-SHA1 for message authentication and a TLS 1.2 protocol connection.
First, the cert issuer (Entrust) does validate the cert as valid for the verify-authorize site, but the connection security is problematic due to weak encryption. SHA-1 began being deprecated years ago, so it's considered an obsolete cipher suite and most browsers and 'modern' sites now use SHA-2. Different browsers will respond to a SHA-1 cert situation differently: some will reject the cert, others will show an alert symbol/pop-up, still others will provide cautionary information if one clicks far enough down the cert-chain data display in the browser. .
Second, if you're using Olde Opera (12.17 or earlier), you need to be sure it is currently set to accept the TLS 1.2 connection protocol. (ctrl+F12 > Security > click 'Security Protocols' > make sure "Enable TLS 1.2" is checked > OK). If TLS 1.2 is not enabled, the cert chain necessary for connection will be broken and rejected. In the past, because of some user crashing related to 1.2, Olde Opera installations were being (and may still be?) auto-tweaked by a background Opera-website-driven handshake process that automatically force-altered some of the protocol check-box settings in the browser. To block this, I finally found it necessary to delete/rename Opera's opera_autoupdate.exe file so that my manual TLS 1.2 settings would "stick" and not be over-ridden from time to time by the forced tweaking.
Do understand, in any case, that as a browser design ages and isn't kept up to date, it will start suffering obsolescence issues as websites and web protocols/procedures evolve and advance. Olde Opera is really at least 3-year-old technology at its core, and certain aspects of the web have moved on in the meantime. It's time to seriously consider modernizing your browser unless you have the technical credentials and interest to spend increasing amounts of time trying to create work-arounds for things like this.
-
enottagain last edited by
Many thanks Blackbird71 that post was most informative and could account for browser variations. It looks as though we are getting somewhere and helps me understand the situation better. Unfortunately TLS1.2 did not help. It is now enabled along with SSL3 and TLS1, however when looking at details only SSL3 TLS1 is shown ,no TSL1.2. Whether I need to reinstal the same version over the top or update to the next one from old versions to get these I do not know. Checking for updates does not install them, it only wants me to accept the latest version. I disabled auto update som time ago as it was a nuisance, popped up as I was clicking a web page where it jumped up between and started downloading. It was stopped promptly.
The following is a typical entry from the Error Console with a yellow triangle and exclamation mark.
Linked-in stylesheet.
[29/12/2015 21:09:04] CSS - http://www.trainvideodepot.com/css/tooltipster.css
-moz-transition-property is an unknown property
Line 149:
-moz-transition-property: opacity;
Other than it relating to cascading style sheets it does not mean much so is probably irrelevent.I have been an opera user from the very early days but stopped updating like many others,when the big change was made after this version. I looked at either V15 or V18 on an Android tablet and did not like what I saw.
As I said previously bookmarks had gone and neither could you alter the names of sites in the new setup. I may look again providing the new Bookmarks facility is as good as the old one. Thanks again.
