• Login
    • Search
    • Categories
    • Recent
    • Tags
    • Users
    • Groups
    • Rules
    • Help

    Do more on the web, with a fast and secure browser!

    Download Opera browser with:

    • built-in ad blocker
    • battery saver
    • free VPN
    Download Opera

    Opera 12.17 no longer works with https for me

    Opera for Windows
    24
    95
    56883
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • rseiler
      rseiler last edited by

      Fyi, Opera 8.54 works fine there, after you accept RSA certificate. Same with IE7.

      That's incredible. I wonder why.

      Reply Quote 0
        1 Reply Last reply
      • rseiler
        rseiler last edited by

        Has anyone figured out a workaround for Error 40 yet, or at least an explanation for how an ancient version of Opera (apparently) works yet v12 doesn't? Sites that use ECDSA continue to grow.

        Reply Quote 0
          1 Reply Last reply
        • blackbird71
          blackbird71 last edited by

          In checking the https://www.ssllabs.com/ssltest/viewMyClient.html site, if I employ Opera 12.14 with TLS 1.2 (and TLS 1.1 and 1) enabled, the site identifies signature algorithms of: SHA256/RSA, SHA1/RSA, MD5/RSA, SHA1/DSA. If I disable TLS 1.2, leaving enabled TLS 1.1 (and TLS 1), and revisit the site, it indeed identifies no available signature algorithms and warns the visitor about his browser not supporting TLS 1.2. (Performance is identical using Opera 11.52). It appears that the site and/or Opera doesn't provide for signature algorithms at TLS 1.1 or below.

          Also, FWIW and from what I can determine, Opera 6.x through 8.x employed protocols SSL2, SSL3, and TLS 1.0. Opera 9.x employed SSL 2 (but was not set as default), SSL3, TLS 1.0, and added TLS 1.1 support. Somewhere after 9.x (either with 10.x or 11.x), SSL 2 was dropped entirely and TLS 1.2 support was added... that being the situation with my copies of Opera 11.x and 12.x. (My Opera 10.x copy has 'gone away', so I can't check it.)

          Reply Quote 0
            1 Reply Last reply
          • rseiler
            rseiler last edited by

            Signature algorithms SHA256/ECDSA, SHA384/ECDSA, and SHA1/ECDSA are probably the ones that are key to this (and maybe "Elliptic curves" too, whatever that is) for the Error 40 sites to actually work. Though I find it very hard to believe that those magically exist in 8.54.

            Reply Quote 0
              1 Reply Last reply
            • mxxxw
              mxxxw last edited by

              Anyone find a solution for this?

              Reply Quote 0
                1 Reply Last reply
              • Deleted User
                Deleted User last edited by

                @mxxxw This will not be changed in Opera 12.
                Use Opera 26.

                Reply Quote 0
                  1 Reply Last reply
                • mxxxw
                  mxxxw last edited by

                  "Use Opera 26." LMFAO!

                  Already have a backup browser, heavily modified FF. Just wanted to know if there's some sort of "hack" like the Google making you use the old web UI if you don't make it think you are using FF.

                  Reply Quote 0
                    1 Reply Last reply
                  • Deleted User
                    Deleted User last edited by

                    @mxxxw I said Opera 12 will not get any fixes related to new SSL ciphers. You cant enabled ciphers not programmed in Operas 12's internal SSL lib. There is no hack to activate nonextstent program features.

                    Reply Quote 0
                      1 Reply Last reply
                    • stng
                      stng last edited by

                      @mxxxw

                      The problem web-site hosted by Cloudfire, ins't?

                      Try to import chr... Opera's root certs to the Opera 12.

                      1. Download archive: https://app.box.com/s/5p00vediw04ds7xkxwgg
                      2. Close Opera
                      3. Extract archive to your Opera's profile folder (don't forget to backup all *.dat files before any manipulations). Replace(rewrite) original *.dat files with files from zip-archive.

                      This should fix the issue with Cloudfire/SSL !

                      Reply Quote 0
                        1 Reply Last reply
                      • mxxxw
                        mxxxw last edited by

                        Some are hosted by Cloudfire, but not all. Yes, it's the Error 40 I get. But sadly , replacing the existing cert files did not help.

                        Reply Quote 0
                          1 Reply Last reply
                        • Deleted User
                          Deleted User last edited by

                          Opera 12 has really strange problems with some websites and TLS.

                          I have recognized:

                          • Some websites hosted on Cloudflare servers
                          • some websites hosted elsewhere but have Cloudflare SSL certificates
                          • some websites have only modern cryptografic ciphers
                          • Some websites Opera has stranges OCSP problems

                          So i have to use Firefox or new Opera.

                          Reply Quote 0
                            1 Reply Last reply
                          • stng
                            stng last edited by

                            @mxxxw
                            Can you provide an URL that causes the problem with SSL? What is your Opera's version - x86 or x64?

                            Some are hosted by Cloudfire, but not all. Yes, it's the Error 40 I get. But sadly , replacing the existing cert files did not help.

                            Hmmm. The new root certificates did helped me! At least, an web-site that uses certificate issued by Cloudfire works now. With old Opera's certs it didn't worked ( "connection failed", "fatal error (40)" ).

                            But works now: https://archlinux.org.ru/

                            Cert:
                            Holder: ssl2000.cloudflare.com, CloudFlare, Inc.
                            Issuer: GlobalSign Organization Validation CA - G2, GlobalSign nv-sa
                            Expires: 12.10.2015 10:08:00 GMT
                            Encryption protocol TLS v1.0 128 bit AES (2048 bit RSA/SHA)

                            p.s. Tested in Opera 12.17 x64 (Win7 x64)

                            Reply Quote 0
                              1 Reply Last reply
                            • stng
                              stng last edited by

                              Tested in Ubuntu 13.04 / Opera 12.14 x86. Works too for me (with replaced root certs)!

                              Reply Quote 0
                                1 Reply Last reply
                              • rseiler
                                rseiler last edited by

                                No effect here (eztv.it, dabr.eu, archlinux.org.ru, etc).

                                @stng, where did those files come from and what gave you the idea that they would work? Why do they seemingly work for some people? And since the files are updated every single time you run Opera, even if they did work, what good are they?

                                Reply Quote 0
                                  1 Reply Last reply
                                • Deleted User
                                  Deleted User last edited by

                                  @stng

                                  Try to import chr... Opera's root certs to the Opera 12.

                                  Download archive: https://app.box.com/s/5p00vediw04ds7xkxwgg
                                  Close Opera
                                  Extract archive to your Opera's profile folder (don't forget to backup all *.dat files before any manipulations). Replace(rewrite) original *.dat files with files from zip-archive.

                                  You should explain where to get the other/missing certificates and how to import, to get it work.
                                  Replacing opera certs files from a unknwon dropbox is not very secure!
                                  I would never trust such download!!!

                                  Reply Quote 0
                                    1 Reply Last reply
                                  • rseiler
                                    rseiler last edited by

                                    Or better, what he changed in which cert to make a difference.

                                    Upon disabling TLS 1.1/1.2, I found that with the above files I can get to archlinux.org.ru but not the other two sites I mentioned (and probably many more sites), so it's not a full solution. We may be close to a solution with more information from stng.

                                    Reply Quote 0
                                      1 Reply Last reply
                                    • stng
                                      stng last edited by

                                      @rseiler

                                      where did those files come from and what gave you the idea that they would work? Why do they seemingly work for some people? And since the files are updated every single time you run Opera, even if they did work, what good are they?

                                      I found this solution on the Operafan(net) forum. Opera certs were extracted from the Opera-Next-12.00-1027 snapshot build. I just re-uploaded archive in a more common ZIP-format (the original attachment was in 7zip).
                                      It fixes archlinux.org.ru (that definitely uses problem Cloudflare certificate). But doesn't help to fix other web-sites mentioned here.

                                      So what we really need to know, why it's helps with archlinux.org.ru (with cert issued by Cloudflare!), but not with others mentioned here??? Maybe we should try to use another certs?

                                      Reply Quote 0
                                        1 Reply Last reply
                                      • stng
                                        stng last edited by

                                        eztv.it, dabr.eu, archlinux.org.ru, etc

                                        Opera 11.64 (Windows) works fairly well with these sites! But 11.64 asks to accept a Cloudflare certificate. For unknown reasons Opera 12.00 build 2.00-1312 (and later versions) don't asks for certificate and blocks access immediately...

                                        Reply Quote 0
                                          1 Reply Last reply
                                        • stng
                                          stng last edited by

                                          Sorry, my error here. Opera 12.00 build 2.00-1312 - is more likely THE LATEST build that could accept a Cloudflare certificate (i am not sure, because i didn't checked all later builds).

                                          Reply Quote 0
                                            1 Reply Last reply
                                          • rseiler
                                            rseiler last edited by

                                            OK, so with that we're very close now, I think. Looking at 11.64, when you visit any of the above sites you're presented with one or two certificate error dialogs that allow you to approve and remember the given certificate.

                                            The reason for all this seems to simply be a certificate name mismatch, which Opera (correctly) deems suspicious. For example, instead of the certificate matching the site's name, it's something like "ssl2000.cloudflare.com."

                                            The question is: Why doesn't Opera 12 present the same dialog? Is there an option to enable that feature? If so, problem solved.

                                            The next-best thing would be to export the "approved" certs from 11.64 and import them into 12, but Opera balks at that upon import in 12.17, even when exported from 12.00-1312 (arc.opera.com/snapshot/windows)

                                            This seems to me a much simpler problem to solve than what we thought previously, that Opera was missing some important security feature like ECDSA. That never made sense to me when Cloudflare's own support page resolutely claims that Opera 8(!!!) and higher are compatible with Universal SSL.

                                            Reply Quote 0
                                              1 Reply Last reply
                                            • First post
                                              Last post

                                            Computer browsers

                                            • Opera for Windows
                                            • Opera for Mac
                                            • Opera for Linux
                                            • Opera beta version
                                            • Opera USB

                                            Mobile browsers

                                            • Opera for Android
                                            • Opera Mini
                                            • Opera Touch
                                            • Opera for basic phones

                                            • Add-ons
                                            • Opera account
                                            • Wallpapers
                                            • Opera Ads

                                            • Help & support
                                            • Opera blogs
                                            • Opera forums
                                            • Dev.Opera

                                            • Security
                                            • Privacy
                                            • Cookies Policy
                                            • EULA
                                            • Terms of Service

                                            • About Opera
                                            • Press info
                                            • Jobs
                                            • Investors
                                            • Become a partner
                                            • Contact us

                                            Follow Opera

                                            • Opera - Facebook
                                            • Opera - Twitter
                                            • Opera - YouTube
                                            • Opera - LinkedIn
                                            • Opera - Instagram

                                            © Opera Software 1995-