- Posts: 280
Question weblate not acccesible with Chrome
- rola
- Topic Author
- Offline
- Senior Member
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Not supported protocol
Using Firefox seems to be everything OK.
Is this a known problem? Or should I do something with my browser?
Ladislav
webtrees 2.0.24 + ⚶ Vesta modules (from cissee.de/ )
testing webtres 2.1.5 + ⚶ Vesta modules
on PHP Version 7.4.28
Please Log in or Create an account to join the conversation.
- fisharebest
- Offline
- Administrator
The translation server was recently updated to use TLSv1.3 instead of TLSv1.2
The documentation says that Chrome 70 (2018-10-16) should be able to use this - caniuse.com/tls1-3
Greg Roach - greg@subaqua.co.uk - @fisharebest@phpc.social - fisharebest.webtrees.net
Please Log in or Create an account to join the conversation.
- HRN
- Offline
- Senior Member
Chrome 100.0.4896.60
webtrees 2.1.18 at visitusinmaputo.com/webtree PHP 8.1.27
webtrees 2.1 dev on local Wampserver 3.3.2 PHP 8.2.13/8.3.0 MySQL 8.2.0
Please Log in or Create an account to join the conversation.
- HRN
- Offline
- Senior Member
Turn on TLS 1.0, TLS 1.1, and TLS 1.2 in Advanced settings and try connecting to translate.webtrees.net again. If this error persists, it is possible that this site uses an unsupported protocol or cipher suite such as RC4 (link for the details), which is not considered secure. Please contact your site administrator.
webtrees 2.1.18 at visitusinmaputo.com/webtree PHP 8.1.27
webtrees 2.1 dev on local Wampserver 3.3.2 PHP 8.2.13/8.3.0 MySQL 8.2.0
Please Log in or Create an account to join the conversation.
- rola
- Topic Author
- Offline
- Senior Member
- Posts: 280
The actual version of Opera (todays upgrade) it did not work.
On my smart phone version 99.xxxxxx do not work.
Ladislav
Ladislav
webtrees 2.0.24 + ⚶ Vesta modules (from cissee.de/ )
testing webtres 2.1.5 + ⚶ Vesta modules
on PHP Version 7.4.28
Please Log in or Create an account to join the conversation.
- fisharebest
- Offline
- Administrator
IE11 does not support TLSv1.3, so I do not expect it to work.
This is not my server, but I can get the configuration changed.
But I am curious to learn why it isn't working - when the documentation says that it should work...
Greg Roach - greg@subaqua.co.uk - @fisharebest@phpc.social - fisharebest.webtrees.net
Please Log in or Create an account to join the conversation.
- makitso
- Away
- Administrator
This site can’t provide a secure connectiontranslate.webtrees.net uses an unsupported protocol.
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Unsupported protocol
The client and server don't support a common SSL protocol version or cipher suite.
Rob
www.skatekey.net ( webtrees 2.1 beta GitHub)
webtrees forum admin
PHP 8.1.21
Hosted at tigertech.net
Please Log in or Create an account to join the conversation.
- pezball
- Offline
- New Member
- Posts: 52
I am curious to learn why it isn't working - when the documentation says that it should work...
Firefox browser info about the different SSL certificates may give a hint.
The URL " www.webtrees.net " (this site) uses encryption TLS_AES_256_GCM_SHA384, 256 bits, TLS 1.3, but "translate.webtrees.net" uses TLS_AES_128_GCM_SHA256, 128 bits, TLS 1.3
Perhaps the 128 bits is the key to the problem, not regarded secure enough anymore.
(And disqualifying lots of old hardware web interfaces too, such as routers, which often use outdated SHA1 certificates).
Please Log in or Create an account to join the conversation.
- fisharebest
- Offline
- Administrator
Greg Roach - greg@subaqua.co.uk - @fisharebest@phpc.social - fisharebest.webtrees.net
Please Log in or Create an account to join the conversation.
- pezball
- Offline
- New Member
- Posts: 52
But exactly which encryption techniques are incompatible, is still a mystery.
The encryption chain has many steps, starting with the web server version, which needs to be compatible with updated encryption modules. So exactly what is considered outdated, is not easy to tell, when Chrome only gives a mystical message.
Google has a goal to make a safer internet, but blocking unsafe sites without any additional information,
and in some cases forcing people to use regular HTTP to access older routers etc, is perhaps not a good idea for safety.
Any encryption is always better than nothing.
Please Log in or Create an account to join the conversation.
- fisharebest
- Offline
- Administrator
It passes the SSL Labs test with a grade "A" - www.ssllabs.com/ssltest/analyze.html?d=translate.webtrees.net
Greg Roach - greg@subaqua.co.uk - @fisharebest@phpc.social - fisharebest.webtrees.net
Please Log in or Create an account to join the conversation.
- JustCarmen
- Offline
- Elite Member
Carmen
Designer of the JustLight theme (comes with a light and dark color palette), Fancy Imagebar, Fancy Research Links and Fancy Treeview for webtrees 2
Check my website at www.justcarmen.nl
Please Log in or Create an account to join the conversation.
- fisharebest
- Offline
- Administrator
Greg Roach - greg@subaqua.co.uk - @fisharebest@phpc.social - fisharebest.webtrees.net
Please Log in or Create an account to join the conversation.
- xmlf
- Offline
- Junior Member
NET::ERR_CERT_DATE_INVALID
The following are the most popular management tools in China.
1. SSL certificate:
github.com/acmesh-official/acme.sh
2. One-click deployment of lnmp tools
github.com/licess/lnmp
3. nginx configuration automatic generation: www.digitalocean.com/community/tools/nginx
Wang Family Website of Suining County, China
www.snwsjz.com
A family tree website that is customized, more humanized and convenient for users.
Please Log in or Create an account to join the conversation.
- fisharebest
- Offline
- Administrator
Greg Roach - greg@subaqua.co.uk - @fisharebest@phpc.social - fisharebest.webtrees.net
Please Log in or Create an account to join the conversation.
- xmlf
- Offline
- Junior Member
I'm happy to help if needed!
Wang Family Website of Suining County, China
www.snwsjz.com
A family tree website that is customized, more humanized and convenient for users.
Please Log in or Create an account to join the conversation.