Certificates
#1
Recently I have been blighted with 'certificate' problems across two Win7 machines, and about half a dozen browsers. 

Most will falsely claim a problem with my clock (there isnt) and most will not allow me to proceed when this happens. 

I have to use Chrome for ebay, for example, because only it gives me the option to advance after the warning. 

Not on all sites, but enough to be a major PITA.

Is there something about the browsers lately? I usuually do not permit updates as that fuxxes up mods and usually addons. ( Do I *need* to update???) 


I would love to disable certificates completely as I dont give a rats butt for their alleged 'protection' which is essentially a scam. Just not sure how to do it, or if it would block connections! 
Chrome seems to be able to force a connection (and so does the chrome based AVG browser), so what is the secret that it has, and that Mozilla browsers do not? 

A note on AVG Browser: Kill its /Update folder, and its processes after exiting, else it will act like a booger.
Reply
#2
I have W7 and W10 machines and only use Firefox - all are 64 bit and not seeing the any issues.

A long time ago I had some issues with certificates, deleted the expired ones and the new ones ones came up as "do you want to install this" which cleared those issues. Not sure if there is a safe certificate cache where you can download but that should be easy to google...

Post some web sites you are trying to access, I'll see what my results are.
Reply
#3
The protection isn't a scam. It is pretty much what stops anyone from pretending to be any site on they internet they wanted.

Certificate trust has to start somewhere, and that is with root certificates that are either built into the OS or come with the browser.

If you are using an older OS or browser, most, if not all root certificates will have expired. Your only choices are to ignore the warnings or update.
Reply
#4
I will have to check out certificate dates.

I personally despise the way the CA system has been set up - essentially a corporate scam.
I never renewed the SSL on my site, and will not. I can access it fine with no problems.

Now with my Win7 and unupdated browsers, most of the korporate sites like Ebay and Amazon might complain, but certain browsers will let me progress, and some wont.

I would like to turn the entire process OFF if possible. Firefox supposedly has an about:config mod, but not sure if it works with the newer version I accidentally updated to (which suxx rocks) .

Ideally i would just boot back to Linux, but recently I am on a project burning DVD's, and Linux suxx rocks at DVD software.
Reply
#5
The Let's Encrypt project has made it so anyone can obtain a certificate for their server for free for some of the reasons you noted.

Another thing to note, older browsers don't support modern TLS. Sites that choose to disable SSL and older TLS versions will be unreachable even if you had up to date root certificates.

Any way you look at it, you are creating a security risk for yourself without a lot of gain.

It looks like if you are running Firefox version 60 or later, you should be fine. That's about where TLS 1.3 got added.
Reply
#6
use Internet Explorer 5

[Image: 1920px-Internet-explorer-usage-data.svg.png]
Reply




Users browsing this thread: 2 Guest(s)