NotHereToPlayGames Posted May 27, 2024 Posted May 27, 2024 (edited) <delete> Edited May 27, 2024 by NotHereToPlayGames
egrabrych Posted May 28, 2024 Posted May 28, 2024 The contents of the updroots.sst file have been changed; the contents of the other * .sst files are unchanged. 1
Anbima Posted May 29, 2024 Posted May 29, 2024 (edited) When I access the website https://www.deepl.com/translator with Chrome 43.0.2357.134, the padlock is green. A different certification path is listed here than in 360Chrome. Is it possible to set which certification is used? Edited May 29, 2024 by Anbima
egrabrych Posted June 2, 2024 Posted June 2, 2024 Re -update. The contents of the updroots.sst file have been changed; the contents of the other * .sst files are unchanged. 1
w2k4eva Posted June 3, 2024 Posted June 3, 2024 On 5/29/2024 at 1:23 PM, Anbima said: Is it possible to set which certification is used? Not directly, the web server decides which cert chain to present. At some sites it depends on what device, OS or browser it thinks you are using, or what location it thinks your IP is at. You can try experimenting with different user agent strings, but some web sites use additional javascript libraries or other fingerprinting methods to get past a simple UA string spoof. Or you can try different VPNs to get IP addresses from different locations.
Anbima Posted June 4, 2024 Posted June 4, 2024 If anyone is interested, I have found a way to get the padlock back to green on most pages in 360Chrome. This involves limiting the TLS to a maximum of 1.2 and blocking certain ciphers. However, it happens that some websites no longer work, such as msfn. Simply add the following to the start parameters: --ssl-version-max=tls1.2 --cipher-suite-blacklist=0xcca9,0xc02b,0xc02c
AstroSkipper Posted June 4, 2024 Posted June 4, 2024 5 hours ago, Anbima said: However, it happens that some websites no longer work, such as msfn. And that's why it makes no sense at all. Using ProxHTTPSProxy does it definitely better. Or a more recent Chromium version as, for example, Thorium. 4
Anbima Posted June 7, 2024 Posted June 7, 2024 I looked at the network traffic with Wireshark and even if the padlock is not green and https is crossed out, the data is transmitted in encrypted form. I also tested with an unencrypted page (http) and the transmitted data is readable. I assume that the faulty certificate is then only decisive for the identity of the server and that this cannot be confirmed. Thorium or Supermium may be good, but it is nowhere near as fast as 360Chrome on my computer. And the memory consumption is also much higher.
modnar Posted December 3, 2024 Posted December 3, 2024 I would like to know why I do not see any ads anymore (e.g. on videocardz.com and linuxliteos.com) after updating root certificates with v1.6 of this tool... was my problem, then (as I've written in Roytam1's browser topic): Mighty fine! I've searched around and found this fine site: Cert_updates for legacy Windows - imported root and intermediate certificates and everything works correctly, e.g. Tomshardware site.
egrabrych Posted February 26 Posted February 26 The delroots.sst and updroots.sst files have changed, the authroots.sst and roots.sst file remains unchanged. 2
AstroSkipper Posted February 26 Posted February 26 4 hours ago, egrabrych said: The delroots.sst and updroots.sst files have changed, the authroots.sst and roots.sst file remains unchanged. Thanks for reporting! TBH, I didn't expect any further root certificate updates via CAupdater 1.0 or Certificate Updater 1.6. Great news! 3
FranceBB Posted March 1 Posted March 1 Yep, they're still working, I've just updated as well. Thanks for the heads up! I'm glad to see that they're still going.
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now