I am planning on using <a href="https://letsencrypt.org/">Let's Encrypt</a> instead of a self-signed certificate for HTTPS on the site
once the Let's Encrypt initiative is out of beta. However, I recently learned that the Let's Encrypt certificates do not work for IE or Chrome under
Windows XP. Firefox under XP works, but I don't know if that is a major inconvenience for site users. It is not clear if this problem will be fixed
before Let's Encrypt exits beta status.
How many people here are still visiting the site using XP? If you are using XP, is it an inconvenience to visit the site with Firefox instead of
another browser?
Yes, Let's Encrypt will produce certificates that conform to browser expectations. The actual difference in security will be minimal in most
situations, but it should make use of HTTPS more comfortable since you won't have to manually accept the certificate over your browser's objections.The Volatile Chemist - 20-1-2016 at 19:00
I use XP on a laptop I have for portable applications and SSH and browsing forums. My main computer used to have XP as well. I always use firefox, so
it won't bother me. But will it effect browsing on a Raspberry Pi (Raspbian/Debian default browser)? I assume not, and I can always use the main site,
but just curious if anyone knew.crystal grower - 21-2-2016 at 12:56
Does it mean that browsing Smadness with firefox + windows XP will work properly? The Volatile Chemist - 22-2-2016 at 16:29
Does it mean that browsing Smadness with firefox + windows XP will work properly?
Yes, it will.DrEvidence - 2-5-2018 at 07:00
That certificate problem is stupid as hell. Does not make sense. If Chrome and IE on Windows XP can't use some certificates, actually encryption
algorithms which are not secure enough, then why in a hell facebook, instagram, google, youtube, wikipedia, wikihow, and billions of most famous
websites work properly?
Actually Microsoft reacted to this problem recently by making an update for Windows PosReady 2009, which is almost same as Windows XP SP3. And using
the famous registry hack we can install such updates.
Worst of all, it just doesn't work. Sounds good tough. Good for advertisement maybe, but not practical or useful. I think the reason why it doesn't
work is because Internet Explorer 6, 7, 8 don't support TLS 1.1 and 1.2. And Chrome uses Internet Explorer settings, while Firefox works independantly
of IE and OS cryptographic libraries.
[Edited on 2-5-2018 by DrEvidence]AlexC - 14-7-2018 at 10:26
Actually it was never about TLS version. But maybe about : cipher suite or key exchange algorithm. Don't know which are exactly supported. On my
windows xp sp3, chrome (49.0.2623.112) works. Still some sites like androidfrog.com doon't. But that is probably because they changed something with
your cert.
According to that update (KB3055973) info: "Adds support for TLS 128-bit & 256-bit Advanced Encryption Standard (AES) cipher suites ".
I did not install any update after sp3, although I know there are about 133 updates available.
I tried POSReady2009 + all updates (about 300) and trust me androidfrog.com and idm still don't work. Firefox never has problems. My advice is to use
"internet download accelerator" as download manager instead of "internet download manager" or "free download maanger". Just like firefox, it works
with all sites. Also has option to preserve disk space before downloading file, to preview videos/movies after they have downloaded at least 3 %. Etc.
Also my advice is to never use POSReady2009, Windows XP Embedded, Windows Embedded Standard, etc, because they have many issues, many stuff lacks, and
nothing is almost compatible. For example virtualbox doesn't work on posready2009. Windows XP Pro x86 is most compatible.
Also people who have issues with windows xp activation, actually there is VOL edition of xp, along with 1000 other original os'es here: https://the-eye.eu/public/MSDN/
Both that CDs contain VL in their name. That is something about volume licensing, easiest method of activation. Also verify if your os is original or
infected by me so i can spy you: http://www.heidoc.net/php/myvsdump.php
[Edited on 14-7-2018 by AlexC]AlexC - 14-7-2018 at 11:12
Here's example where idm and fdm don't work. And ida works.
