X
Tap here to go to the mobile version of the site.

Support Forum

Secure connection failed in version 37.0.1 but works in all other browsers and firefox 36

Posted

https://mail.twcbc.com/ will not load. The is Time Warner's business class web email.

The specific message is: Secure Connection Failed

The connection to mail.twcbc.com was interrupted while the page was loading.

   The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
   Please contact the website owners to inform them of this problem.

This page loads in IE 11 with all recent patches, and in Chrome. Also it will load in Firefox 35 and 36. This issue is specific to 37.0.1

https://mail.twcbc.com/ will not load. The is Time Warner's business class web email. The specific message is: Secure Connection Failed The connection to mail.twcbc.com was interrupted while the page was loading. The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. Please contact the website owners to inform them of this problem. This page loads in IE 11 with all recent patches, and in Chrome. Also it will load in Firefox 35 and 36. This issue is specific to 37.0.1

Additional System Details

Installed Plug-ins

  • ActiveTouch General Plugin Container Version 105
  • Adobe PDF Plug-In For Firefox and Netscape 11.0.04
  • Citrix Online App Detector Plugin
  • Citrix Receiver Plugin (Win32)
  • Citrix URL-Redirection Helper Plugin
  • Google Update
  • NPRuntime Script Plug-in Library for Java(TM) Deploy
  • Next Generation Java Plug-in 11.40.2 for Mozilla browsers
  • The plugin allows you to have a better experience with Microsoft SharePoint
  • The plugin allows you to have a better experience with Microsoft Lync
  • Shockwave Flash 16.0 r0
  • 5.1.30514.0
  • VLC media player Web Plugin 2.1.0

Application

  • User Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:37.0) Gecko/20100101 Firefox/37.0

More Information

cor-el
  • Top 10 Contributor
  • Moderator
17670 solutions 159841 answers

The website may try to fallback to TLS 1.0 in a way that is no longer allowed in current releases. It also uses a weak cipher suite that is not considered safe.

  • Connection Encrypted (TLS_RSA_WITH_AES_128_CBC_SHA, 128 bit keys, TLS 1.0)

You can open the about:config page via the location/address bar and use its search bar to locate this pref:

  • security.tls.insecure_fallback_hosts

You can double-click the line to modify the pref and add the domain to this pref. If there are already websites (domains) in this list then add a comma and the new domain (no spaces). You should only see domains separated by a comma in the value column.

You can open the about:config page via the location/address bar. You can accept the warning and click "I'll be careful" to continue.

The website may try to fallback to TLS 1.0 in a way that is no longer allowed in current releases. It also uses a weak cipher suite that is not considered safe. *Connection Encrypted (TLS_RSA_WITH_AES_128_CBC_SHA, 128 bit keys, TLS 1.0) You can open the <b>about:config</b> page via the location/address bar and use its search bar to locate this pref: *security.tls.insecure_fallback_hosts You can double-click the line to modify the pref and add the domain to this pref. If there are already websites (domains) in this list then add a comma and the new domain (no spaces). You should only see domains separated by a comma in the value column. You can open the <b>about:config</b> page via the location/address bar. You can accept the warning and click "I'll be careful" to continue. *http://kb.mozillazine.org/about:config

Modified by cor-el

Question owner

cor-el said

The website may try to fallback to TLS 1.0 in a way that is no longer allowed in current releases. It also uses a weak cipher suite that is not considered safe.
  • Connection Encrypted (TLS_RSA_WITH_AES_128_CBC_SHA, 128 bit keys, TLS 1.0)
You can open the about:config page via the location/address bar and use its search bar to locate this pref:
  • security.tls.insecure_fallback_hosts
You can double-click the line to modify the pref and add the domain to this pref. If there are already websites (domains) in this list then add a comma and the new domain (no spaces). You should only see domains separated by a comma in the value column.

Sorry, unless I'm putting it in the wrong place

I did try both just the domain, the full URL. same result

''cor-el [[#answer-715277|said]]'' <blockquote> The website may try to fallback to TLS 1.0 in a way that is no longer allowed in current releases. It also uses a weak cipher suite that is not considered safe. *Connection Encrypted (TLS_RSA_WITH_AES_128_CBC_SHA, 128 bit keys, TLS 1.0) You can open the <b>about:config</b> page via the location/address bar and use its search bar to locate this pref: *security.tls.insecure_fallback_hosts You can double-click the line to modify the pref and add the domain to this pref. If there are already websites (domains) in this list then add a comma and the new domain (no spaces). You should only see domains separated by a comma in the value column. </blockquote> Sorry, unless I'm putting it in the wrong place I did try both just the domain, the full URL. same result
cor-el
  • Top 10 Contributor
  • Moderator
17670 solutions 159841 answers

You need the full domain: mail.twcbc.com

You need the full domain: <b>mail<i></i>.twcbc<i></i>.com</b>

Question owner

cor-el said

You need the full domain: mail.twcbc.com

Thank you, that fixes it.

''cor-el [[#answer-715299|said]]'' <blockquote> You need the full domain: <b>mail<i></i>.twcbc<i></i>.com</b> </blockquote> Thank you, that fixes it.
cor-el
  • Top 10 Contributor
  • Moderator
17670 solutions 159841 answers

You're welcome

You're welcome