EgorKuzevanov
opened on Jul 29, 2022 · edited by EgorKuzevanov
Edits
For revive old Internet Explorer 6/7/8 browsers on Windows XP/Server 2003/XP x64, it would be nice to add to One Core API the modified HTTPS DLLs with support for the following modern cipher suites:
TLS 1.2: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS 1.2: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS 1.2: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
TLS 1.2: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS 1.2: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
TLS 1.2: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
TLS 1.3: TLS_AES_128_GCM_SHA256
TLS 1.3: TLS_AES_256_GCM_SHA384
TLS 1.3: TLS_CHACHA20_POLY1305_SHA256
There are, of course, updates KB4019276, KB4459091, KB4467770 and KB4493435 for Windows XP SP3 that add support for TLS 1.2, but not all HTTPS sites open with them in 2022. In addition, updates KB4019276, KB4459091, KB4467770 and KB4493435 are not available for Windows Server 2003 and Windows XP x64.
If the above cipher suites are added to the HTTPS DLLs from Internet Explorer 6/7/8, then to surf the Internet through IE for Windows XP/Server 2003/XP x64 will not have to use decrypting HTTPS proxies like Proxomitron Reborn and ProxHTTPSProxyMII.
gdl-blue commented on Jul 29, 2022
gdl-blue
on Jul 29, 2022
I also need it, as KB4019276, KB4459091, KB4467770 and KB4493435 only adds TLS support to Internet Explorer. Some applications (that does not depend to IE) say that they cannot connect to the website because of unsupportedTLS.
EgorKuzevanov
on Jul 29, 2022 · edited by EgorKuzevanov
Edits
Author
I also need it, as KB4019276, KB4459091, KB4467770 and KB4493435 only adds TLS support to Internet Explorer. Some appl... (truncated)"' data-component="IconButton" data-no-visuals="true">
I also need it, as KB4019276, KB4459091, KB4467770 and KB4493435 only adds TLS support to Internet Explorer. Some applications (that does not depend to IE) say that they cannot connect to the website because of unsupportedTLS.
There is such a download manager as Download Master. For download files over HTTPS, Download Master uses the system HTTPS DLLs from Internet Explorer, in which support for TLS versions and cipher suites depends on the version of Windows.
Windows XP/Server 2003/XP x64 does not supports the following cipher suites:
TLS 1.2: TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS 1.2: TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS 1.2: TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
TLS 1.2: TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS 1.2: TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
TLS 1.2: TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
TLS 1.3: TLS_AES_128_GCM_SHA256
TLS 1.3: TLS_AES_256_GCM_SHA384
TLS 1.3: TLS_CHACHA20_POLY1305_SHA256
Therefore, Download Master on Windows XP/Server 2003/XP x64 cannot download files from HTTPS sites using the above cipher suites.
https://github.com/shorthorn-project/One-Core-API-Binaries/issues/83
