Jump to content

My Browser Builds (Part 3)


Recommended Posts

I'm using 'palemoon-28.10.6a1.win32-git-20220521-d849524bd-uxp-1e871780f-xpmod-sse.7z' and I can't seem to visit https://forum.openmpt.org. I'm getting:

forum.openmpt.org uses an invalid security certificate.

The certificate is not trusted because the issuer certificate is unknown.
The server might not be sending the appropriate intermediate certificates.
An additional root certificate may need to be imported.

(Error code: SEC_ERROR_UNKNOWN_ISSUER)

No problem at all when I visit this website on my smartphone.

Link to comment
Share on other sites


Posted (edited)
1 hour ago, Reino said:

I'm using 'palemoon-28.10.6a1.win32-git-20220521-d849524bd-uxp-1e871780f-xpmod-sse.7z' and I can't seem to visit https://forum.openmpt.org. I'm getting:

forum.openmpt.org uses an invalid security certificate.

The certificate is not trusted because the issuer certificate is unknown.
The server might not be sending the appropriate intermediate certificates.
An additional root certificate may need to be imported.

(Error code: SEC_ERROR_UNKNOWN_ISSUER)

No problem at all when I visit this website on my smartphone.

Using palemoon-28.10.6a1.win32-git-20220521-d849524bd-uxp-1e871780f-xpmod.7z no problems here. This is the certificate you need:

 openmpt-org.png

Maybe you can import it from another browser or use my for you exported certificate: https://www.mediafire.com/file/iak4kxtgsw6k5r3/openmptorg.crt/file

Cheers, AstroSkipper ordi1fun.gif

Edited by AstroSkipper
  • Like 1
Link to comment
Share on other sites

14 hours ago, Reino said:

I'm using 'palemoon-28.10.6a1.win32-git-20220521-d849524bd-uxp-1e871780f-xpmod-sse.7z' and I can't seem to visit https://forum.openmpt.org. I'm getting:

forum.openmpt.org uses an invalid security certificate.

The certificate is not trusted because the issuer certificate is unknown.
The server might not be sending the appropriate intermediate certificates.
An additional root certificate may need to be imported.

(Error code: SEC_ERROR_UNKNOWN_ISSUER)

No problem at all when I visit this website on my smartphone.

Make sure NM 28 isn't configured to go through ProxHTTPSProxyMII or a similar secure proxy. (NM 28 shouldn't need it.)

  • Like 1
Link to comment
Share on other sites

17 minutes ago, Reino said:

I don't know what "ProxHTTPSProxyMII" is, but I'm not using a proxy. Never have.

Anyway, I don't know what happened, but it appears the problem is somehow gone now. I can now visit https://forum.openmpt.org/ and the certificate is exactly the same as shown by @AstroSkipper. Weird.

Glad it works for you now! :thumbup In some cases you need a proxy like ProxHTTPSProxy or HTTPSProxy in Windows XP. If you don't know what it is, have a look in my thread:  

Cheers, AstroSkipper ordi1fun.gif

Link to comment
Share on other sites

1 hour ago, AstroSkipper said:

In some cases you need a proxy like ProxHTTPSProxy or HTTPSProxy in Windows XP.

I haven't stumbled into any cases where ProxHTTPSProxy or HTTPSProxy is "needed".  I do not use Windows Updates and it seems that's really the only thing where there is a "need".

Link to comment
Share on other sites

I just updated from New Moon 28.10.5a1 to 28.10.6a1 (64-bit on XP x64) and noticed it can now pass the Cloudflare browser check! This is reaaaally helpful for my partly web-based primary workflow, so if anything you did made this work, roytam1, you have my sincere thanks! :thumbup

  • Like 2
Link to comment
Share on other sites

I'm not referring to Secure DNS (I do not use it and see it as "hype and propaganda").

I'm referring to Cloudflare "fingerprint" tests that some web sites will not let you visit until you demonstrate you are human by clicking on mountains, boats, traffic lights, bikes, et cetera.

If you can visit the below website WITHOUT being asked to prove that you are human, then you are PASSING the Cloudflare browser checks.

https://raybuck.com/firebird-vs-trans-am-history-trivia/

  • Like 1
Link to comment
Share on other sites

1 hour ago, NotHereToPlayGames said:

I'm not referring to Secure DNS (I do not use it and see it as "hype and propaganda").

I'm referring to Cloudflare "fingerprint" tests that some web sites will not let you visit until you demonstrate you are human by clicking on mountains, boats, traffic lights, bikes, et cetera.

If you can visit the below website WITHOUT being asked to prove that you are human, then you are PASSING the Cloudflare browser checks.

https://raybuck.com/firebird-vs-trans-am-history-trivia/

Oh, I see.

Yes I just visited that site without being asked anything at all so I guess I'm also good to go.

Thank you for your help.

  • Upvote 1
Link to comment
Share on other sites

Posted (edited)
1 hour ago, NotHereToPlayGames said:

If you can visit the below website WITHOUT being asked to prove that you are human, then you are PASSING the Cloudflare browser checks.

https://raybuck.com/firebird-vs-trans-am-history-trivia/

A definitive "CloudFlare Browser Check" is trying to log-in to GitLab:

https://gitlab.com/users/sign_in

BTW, this happens when site admins - who are CF clients - have enabled a feature called "Browser Integrity Check" (BIC) ... 
CF have recently abolished the CAPTCHA challenges as part of BIC, replacing them with automated checking (JS) scripts, requiring the browser to pass mathematical "challenges"... It was those scripts that were being "racist" towards non-mainstream browsers and thus those browsers (including the UXP ones) were outright denied access to sites CF intend to "protect" from "unwelcome" traffic... :angry:

3 hours ago, GrandAdmiralThrawn said:

so if anything you did made this work, roytam1, you have my sincere thanks!

That CF issue (please search this thread for more details) finally made it to prominent web sites/forums, not to mention the "loud voices" of some Pale Moon users (to which we owe big thanks :thumbup ) on CF's Community Forums, so it had to be acknowledged and acted upon by real CF devs... It was "them" who fixed it for us (but some more "obscure" web browsers, like the Qt-based Otter Browser, are reported to still suffer from this "racism" :realmad: ) ...

OT: @Dave-H : Do you, hopefully, know what happened to
https://thedndsanctuary.eu/

that used to post invaluable info about the Otter Browser ? :dubbio:

Edited by VistaLover
  • Like 1
  • Upvote 2
Link to comment
Share on other sites

1 hour ago, NotHereToPlayGames said:

Sweet!  I only wish there was a way to get Proxomitron Reborn to pass that Cloudflare check  :angry:

Yeah, I wonder what's the deal here. At first, I thought it just acts as simple passthrough when no rules are applied, but it's not, sites will detect and block it if they desire. Some company's website acting as a gateway to their network I came across said plainly that I'm using a proxy and can't enter. Even Google image search doesn't work properly, get some CSP errors in the console when trying to view individual image.

I use proxy.pac to get the browser to connect via proxy only to hosts for which I use Proxomitron. I don't need it for any site that actually blocks it.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.


×
×
  • Create New...