So I do not actually know how long I've had this issue. I recently tried to log into yahoo messenger and couldn't. I hit troubleshoot and it said because Internet Explorer couldn't make a secure connection to the yahoo login page. Well, great, yahoo's entire messaging client is based off a very buggy browser. Though, as far as I could remember, I would have to try to login twice or thrice until it finally would let me in (early signs IE7 wasn't going to work anymore?)
I wipe the dust off IE7 on my WIN XP machine and try to go to login.yahoo.com It says the page can't be displayed (as if I'm not even connected to the internet)
So I immediately thought it was some kind of SSL problem (but a lot of websites use TLS now? I don't know too much about this stuff. I think IE7 on WIN XP doesn't support anything past TLS 1.0, but it supports SSL 3.0 and 2.0. I tried a few other websites, including google.
While I can log into a google account by going to google.com and hitting sign in, I can't access gmail at all. I just get a "page can't be displayed" also. I then tried hotmail/outlook and it connected and worked fine. download.microsoft.com doesn't load. It really seems to be hit or miss whether a secure website will connect or not. When connected successful to a secure website I can check the certificate info normally and everything. I don't get any SSL errors at all. Either a page will load, or won't load.
I'm trying to figure out if this means I have some kind of virus or websites are just uses different security technologies that IE on WIN XP doesn't support (I read that certain things like SNI are available on IE 7/8 for Vista and above, but not XP.) I tried using IE8 on a VISTA computer and that worked fine, but I also noticed the cipher strength in the about section is 128 bit for IE8 on Vista, while IE7 on my WIN XP machine is 128bit. I don't know if this makes a difference.
Now something else I tried was using a website that takes screenshots of webpages using different browser versions. I tried going to the trouble sites using IE7, and they worked (but it doesn't make clear if it was IE7 on XP or VISTA, and from what I gather on the internet, it's entirely different on each OS) I then tried using IE6, which is XP only, and the one I tried (before I got kicked off for too many browser screenshot attempts) gave the same display error... in another language anyway.
Now just to be clear my other browsers still work flawlessly. I was going to try to install IE8, but it seems to have disappeared off the face of the earth as Microsoft pushes all their new OS and IE, and I don't trust 3rd parties when it comes to system components. I went to the yahoo messenger page and it still says it's compatible with Windows XP. I wonder if this is some kind of practical joke.
So I guess my question is if this is behavior of some deeply-rooted virus or if major sites just won't accept connections from old, insecure browsers (which I really don't understand why that would be. Isn't it the client's risk he's taking if insecurely connecting to a website? Why would it completely block me out?)
update: So I checked who signed the certificates, and it seems anything signed by Verisign I've checked so far will work on IE7, but Symantec, Rapidssl, and Google authority do not allow IE7 to connect. On IE7 The main yahoo page is signed by Verisign, and it allows me to connect with SSL. Once I hit sign in, it tries to use a Symantec certificate instead, which doesn't allow the connection. I tried going to two bank sites. bankofamerica's won't allow the connection (symantec) but tdbank's will (verisign)
update2: So I checked the certificate on login.yahoo.com it says it expires 3/30/16. Don't certificates usually last exactly, give or take a few days, a year? So if they recently updated the certificate it would have been in the beginning of april/last day of march which means it would have started to cause me this trouble last week (This is the first time I tried to log into yahoo in about 5 days). I think. Did I just answer my own problem?
Edited by WindowsHatesMe, 11 April 2015 - 07:07 AM.