Private Messenger broken?

[Anunaki]

I'm taken to a "This page is unsafe" page when I go to the Private messenger section. When I choose to ignore this the lay-out is broken

 

[bbz149]

Me too, since yesterday!

 

[Alpha1]

Are you both using chrome?

PM section is https encrypted, it's most likely the browser not likely the cipher suite anymore.

I'm on a train at the minute so can't do anything. Use a different browser in the mean time.

 

[Macro]

In case it helps, Chrome says ...

The connection to this site uses an obsolete protocol (TLS 1.0), a strong key exchange (ECDHE_RSA with P-256), and an obsolete cipher (AES_256_CBC with HMAC-SHA1).

 

[funhouse]

Yes, I have got that message in Chrome for a while. I think the older ( AES_256_CBC with HMAC-SHA1) encryption has been exploited elsewhere so they are just warning us.

I guess it may be fixed if the forum software is updated but I can imagine that could be a testing time...

 

[bbz149]

Yep Chrome for me!

 

[chunksin]

If it's a 3rd party cert can't you just get a SHA-2 version reissued ? Rapidssl did that for free when I had to update all of our websites last year to move off SHA-1

 

[Anunaki]

Yes it's chrome

 

[Big Phil]

Strange. I'm using chrome and it's working for me.

 

[chunksin]

Update to v56 and it will break!

 

[AnDyC]

V56 Chrome user here. No problems.

 

[aeroflott]

If it helps, Desktop Firefox is OK here, but I get a message when using Chrome on Android:

Your connection is not private: Attackers might be trying to steal your information blah blah blah.

 

[big10p]

I use chrome and have been bugged with this issue. I deleted all history/cookies and it seems to have sorted it... unless Alpha1 has fixed something, server side?

 

[dj_yt]

Chrome 56.0.2924.87 (64-bit) here.

I've tried deleting all UKVAC cookies and it didn't solve the issue.

As a quick fix, using incognito mode seems to work.

 

[big10p]

Same version as me. I deleted all backup browsing data (first 4 check boxes) from "the beginning of time".
big10p2017-02-08 14:50:07

 

[chunksin]

Cheers guys, I just cleared cookies, cached images and hosted app data (the default) and its all back to normal

 

[JohnBud]

had an issue this morning but got told all is fine by 2 members on my facebook page. they posted 2 links to the problem

https://www.schneier.com/blog/archives/2012/10/when_will_we_se.html

 

[Outrun2]

Cheers guys, I just cleared cookies, cached images and hosted app data (the default) and its all back to normal

This worked for me, but I had to continue past the 'unsafe' message in order to log in. Once logged back in all seems well - although it does state 'Not Secure' in the address bar when within the private messenger environment (it used to do that even before the update though).

 

[vib_ribbon]

i'm getting the same on Firefox 51.0.1 (64-bit) on my imac os 10.11.6