Windows 10 will reach EOS (end of support) on October 14, 2025. For more information, see this article.

Avatar for Username

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

话题已存档。 如果需要帮助请提出新问题。

How do I determine the TLS/SSL configuration of Firefox ver 38?

  • 1 个回答
  • 34 人有此问题
  • 51 次查看
  • 最后回复者为 cor-el

grnlntrn
grnlntrn
more options

I got the following message (partially shown) when I tried to connect to a particular website.

Secure Connection Failed An error occurred during a connection to xxxxxx.xxx. Cannot communicate securely with peer: no common encryption algorithm(s). (Error code: ssl_error_no_cypher_overlap). The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.

I tried the MS IE browser and had a similar notice. I checked the security setting on IE, added selections TLS 1.1 and TLS 1.2 and resolved my problem on the IE browser.

So I wanted to check the TLS/SSL settings on Firefox but could not find where they were selected. I thought they used to be under Tools/Options. Where can I go to verify them?

I got the following message (partially shown) when I tried to connect to a particular website. Secure Connection Failed An error occurred during a connection to xxxxxx.xxx. Cannot communicate securely with peer: no common encryption algorithm(s). (Error code: ssl_error_no_cypher_overlap). The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. I tried the MS IE browser and had a similar notice. I checked the security setting on IE, added selections TLS 1.1 and TLS 1.2 and resolved my problem on the IE browser. So I wanted to check the TLS/SSL settings on Firefox but could not find where they were selected. I thought they used to be under Tools/Options. Where can I go to verify them?

被采纳的解决方案

Can you post a link to a publicly accessible page (i.e. no authentication or signing on required)?

The website may try to fallback to a lower TLS version in a way that is no longer allowed in current releases or may be using a deprecated cipher suite.

You can open the about:config page via the location/address bar and use its search bar to locate this pref:

  • security.tls.insecure_fallback_hosts

You can double-click the line to modify the pref and add the full domain to the value of this pref. If there are already websites (domains) in this list then add a comma and the new domain (no spaces). There should only be domains separated by a comma in the Value column (example.com,www.example.com).

If this helps then you can contact this website and ask them to look into this and update their security.

定位到答案原位置 👍 7

所有回复 (1)

cor-el
cor-el
  • Moderator
more options

选择的解决方案

Can you post a link to a publicly accessible page (i.e. no authentication or signing on required)?

The website may try to fallback to a lower TLS version in a way that is no longer allowed in current releases or may be using a deprecated cipher suite.

You can open the about:config page via the location/address bar and use its search bar to locate this pref:

  • security.tls.insecure_fallback_hosts

You can double-click the line to modify the pref and add the full domain to the value of this pref. If there are already websites (domains) in this list then add a comma and the new domain (no spaces). There should only be domains separated by a comma in the Value column (example.com,www.example.com).

If this helps then you can contact this website and ask them to look into this and update their security.