Category Random Stuff       Thread starter PSXHAX       Start date Sep 5, 2016 at 9:04 PM       3,026       16            
Back in July we enabled Secure Sockets Layer (SSL) encryption here on PSXHAX.COM, and while most modern OS's and browsers play nice with it a few older ones still produce handshake failure errors rendering the site inaccessible on those devices.

One such case was reported by @abzii running Windows XP with Chrome 49.0.2623.112 on his desktop PC, who stated he already has SP3 installed which is supposed to allow access to sites with SSLv3 disabled by the browser due to the POODLE Attack.

If anyone is knowledgeable with HTTPS / SSL protocol here, let this test run: https://www.ssllabs.com/ssltest/analyze.html?d=www.psxhax.com&hideResults=on

Click on the results, and you'll see a few issues such as:
Code:
Android 2.3.7   No SNI 2		Server sent fatal alert: internal_error
IE 6 / XP   No FS 1      No SNI 2        Server sent fatal alert: handshake_failure
IE 8 / XP   No FS 1      No SNI 2        Server sent fatal alert: internal_error
Java 6u45   No SNI 2		Server sent fatal alert: internal_error
OpenSSL 0.9.8y 	Server sent fatal alert: handshake_failure
Comparing our cert to (for example) Xenforo's I notice the following difference only:
Rich (BB code):
Xenforo: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, 128 bit keys, TLS 1.2
PSXHAX: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, 128 bit keys, TLS 1.2
According to @abzii he can access Xenforo's site fine via PC, but has to access PSXHAX.COM from his mobile device.

Needless to say we'd like to get the SSL / HTTPS issue fixed for all browsers if possible... feel free to share any ideas, thoughts, suggestions, etc below or via the Contact Us page and we'll be happy to send a PayPal donation to whoever can sort it out for us. ;)
LOLCat HTTPS.jpg
 

Comments

PSXHAX

Staff Member
Moderator
Contributor
Verified
I would have if it was a Xenforo-specific issue but its probably something with the way our SSL cert is configured, the type of cert, etc.. we just used Xenforo's site as an example when trying to troubleshoot this awhile back.
 

Wultra

Developer
Senior Member
Contributor
I would have if it was a Xenforo-specific issue but its probably something with the way our SSL cert is configured, the type of cert, etc.. we just used Xenforo's site as an example when trying to troubleshoot this awhile back.


He will need to upgrade to windows vista or higher as the certificate you installed is using HTTP2.0 not 1.0 that XP uses.. thats why he getting errors and problems

But here a link for fix on http1.0

https://support.microsoft.com/en-us/kb/314864
 

PSXHAX

Staff Member
Moderator
Contributor
Verified
Thanks @VultraAID! (y) Can you try this fix he suggested @abzii?

In your opinion @VultraAID is our HTTP2.0 certificate OK, or is there a more 'universal' one that supports 1.0 and 2.0 simultaneously or some other type of server-side fix for visitors on older browsers/OS's that won't know about the M$ SSL hotfix?
 

Wultra

Developer
Senior Member
Contributor
Thanks @VultraAID! (y) Can you try this fix he suggested @abzii?

In your opinion @VultraAID is our HTTP2.0 certificate OK, or is there a more 'universal' one that supports 1.0 and 2.0 simultaneously or some other type of server-side fix for visitors on older browsers/OS's that won't know about the M$ SSL hotfix?
Http2.0 was built last year and this year was made faster webpage load and better security and the coding was encrypted..

On the other hand http1.0 yes it will work with any Os but it has a slow page response time and less secure but i would t recommand it..

And the other option is down to his browser if he using internet explorer the really old one that deffently does not support most php formats or http2.0.. He will need to use Chrome or upgrade his pc
 

Agret

Senior Member
Contributor
VultraAID is not correct. The server supports HTTP/2.0 but that doesn't mean that it is enforced, it will still answer HTTP/1.0 responses. The certificate isn't tied to the level of HTTP support.
 

abzii

Senior Member
Contributor
Ill be dl that hotfix now and will post result soon thanx for the help everyone

Setup has detected that the service pack version of the system installed is newer than the update you are applying to it.

You can only install this update on a computer with no service packs installed
 

PSXHAX

Staff Member
Moderator
Contributor
Verified
Ill be dl that hotfix now and will post result soon thanx for the help everyone

Setup has detected that the service pack version of the system installed is newer than the update you are applying to it.

You can only install this update on a computer with no service packs installed
Thanks for the follow-up @abzii, so at the moment it looks like we're back to square one... he still can't access PSXHAX.COM from his WinXP Chrome PC but he can access other HTTPS sites including Xenforo's forum.

Is there anything else users with older PC's / OS's can try besides upgrading (which may not be an option for everyone due) ? :confused:
 
Recent Articles
Some of the PlayStation 4 E3 2019 PS4 Trailer Videos!
We've seen a Watch Dogs: Legion PS4, Marvel Avengers: A-Day PS4 and some Final Fantasy VIII Remastered & Final Fantasy VII Remake PS4 videos from E3 2019, and below are several more PlayStation 4...
Crash Team Racing: Nitro-Fueled Races to PS4 Next Week
CTR racers on your mark, get set, go... as Crash Team Racing: Nitro-Fueled speeds onto PlayStation 4 next week. šŸŽ šŸ Get ready to go fur-throttle in the fully-remastered and revved up to the max...
TurboGrafx-16 Mini, PC Engine Mini & PC Engine CoreGrafx Mini by Konami
A few months back we covered the Sega Genesis Mini reveal, and during E3 2019 Konami announced a TurboGrafx-16 Mini, PC Engine Mini and PC Engine CoreGrafx Mini on their official site for...
PS4 Firmware / System Software 6.80 Preview Program PUP and Features
As reported earlier this month, since their recent 6.71 PS4 OFW Update those enrolled in Sony's PlayStation Preview Program can now download and install the PS4 Firmware / System Software 6.80...
Top