EEVBlog store SSL certificate

[pkr]

Hi Dave,

I'm not sure if this is directly related to the other SSL issue being reported earlier today, but I went to look at the BM235 ( linked from your eMail of yesterday ) and get

Error 526 Ray ID: 37675806ab4635f0 • 2017-06-29 07:58:59 UTC
Invalid SSL certificate

Navigating the site works up to the 'Add to cart' button when the same error gets reported.

[Jeroen3]

To be more precise, bypassing cloudfare make chrome tell:

Code: [Select]

ERR_SSL_VERSION_OR_CIPHER_MISMATCH

Unsupported protocol
The client and server don't support a common SSL protocol version or cipher suite.
While IE tells:

Code: [Select]

Turn on TLS 1.0, TLS 1.1, and TLS 1.2 in Advanced settings and try connecting to https://104.31.75.133  again.
If this error persists, it is possible that this site uses an unsupported protocol or cipher suite such as RC4 (link for the details), which is not considered secure.
Please contact your site administrator.

[bitseeker]

Yes, TLS handshake fails.

curl -I -v https://104.31.74.133
* Rebuilt URL to: https://104.31.74.133/
*   Trying 104.31.74.133...
* Connected to 104.31.74.133 (104.31.74.133) port 443 (#0)
* ALPN, offering http/1.1
* Cipher selection: ALL:!EXPORT:!EXPORT40:!EXPORT56:!aNULL:!LOW:!RC4:@STRENGTH
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/certs/ca-certificates.crt
  CApath: /etc/ssl/certs
* TLSv1.2 (OUT), TLS header, Certificate Status (22):
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.0 (IN), TLS header, Unknown (21):
* TLSv1.0 (IN), TLS alert, Server hello (2):
* error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure
* Closing connection 0
curl: (35) error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake failure