Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

what do we change on windows server 2k8 iis7 to fix "Secure Connection Failed" that is appearing with version 37 and 37.0.1?

  • 2 replies
  • 2 have this problem
  • 1 view
  • Last reply by cor-el

more options

We host https://www.prereg.net and the recent updates (version 37 and 37.0.1) have caused a "Secure Connection Failed" message to appear. We have contacted our hosting company and our SSL provider (geotrust) and neither of them are able to help with this issue. Can anyone tell us what we might need to alter on our server in order to fix this issue? We have a valid certificate and we have SSL3 and TLS 1.2 enabled.

Thank you very much for your help

We host https://www.prereg.net and the recent updates (version 37 and 37.0.1) have caused a "Secure Connection Failed" message to appear. We have contacted our hosting company and our SSL provider (geotrust) and neither of them are able to help with this issue. Can anyone tell us what we might need to alter on our server in order to fix this issue? We have a valid certificate and we have SSL3 and TLS 1.2 enabled. Thank you very much for your help

All Replies (2)

more options

I'd suggest following the setup advised here: https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility

Your website accepts old cyphers, which are weak, https://www.ssllabs.com/ssltest/analyze.html?d=prereg.net

Godaddy should be able to help you update to a more secure system.

more options

The browser console shows:

This site uses the cipher RC4 for encryption, which is deprecated and insecure.
  • TLS_RSA_WITH_RC4_128_SHA

Attached screenshot from Nightly with domain added to security.tls.insecure_fallback_hosts


Modified by cor-el