This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

what do we change on windows server 2k8 iis7 to fix "Secure Connection Failed" that is appearing with version 37 and 37.0.1?

  • 2 svar
  • 2 har dette problemet
  • 1 view
  • Siste svar av cor-el

more options

We host https://www.prereg.net and the recent updates (version 37 and 37.0.1) have caused a "Secure Connection Failed" message to appear. We have contacted our hosting company and our SSL provider (geotrust) and neither of them are able to help with this issue. Can anyone tell us what we might need to alter on our server in order to fix this issue? We have a valid certificate and we have SSL3 and TLS 1.2 enabled.

Thank you very much for your help

We host https://www.prereg.net and the recent updates (version 37 and 37.0.1) have caused a "Secure Connection Failed" message to appear. We have contacted our hosting company and our SSL provider (geotrust) and neither of them are able to help with this issue. Can anyone tell us what we might need to alter on our server in order to fix this issue? We have a valid certificate and we have SSL3 and TLS 1.2 enabled. Thank you very much for your help

All Replies (2)

more options

I'd suggest following the setup advised here: https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility

Your website accepts old cyphers, which are weak, https://www.ssllabs.com/ssltest/analyze.html?d=prereg.net

Godaddy should be able to help you update to a more secure system.

more options

The browser console shows:

This site uses the cipher RC4 for encryption, which is deprecated and insecure.
  • TLS_RSA_WITH_RC4_128_SHA

Attached screenshot from Nightly with domain added to security.tls.insecure_fallback_hosts


Endret av cor-el