stduopollex Arc User

Comments

• Looks like they've enabled TLS1.0 protocol support which will make it work for some older browsers again, but they've yet to fix the (horrible) cipher suite, so it's still broken on some modern browsers that disable (for very good reasons) RC4.

  in http://billing.arcgames.com/en/ not working...want zen Comment by stduopollex August 2015
• They've now enabled TLSv1.0 which will make it work in some older browsers where it wasn't previously working, but still haven't fixed the cipher suite, so it's still broken for modern browsers.

  in Tracking Down Arc Layover ZEN Purchasing Bugs Comment by stduopollex August 2015
• The x509 certificate is valid, the problem is the cipher suite is poorly chosen. This kind of misconfiguration should really be immediately obvious to technical staff. Hopefully they'll fix that shortly.

  in http://billing.arcgames.com/en/ not working...want zen Comment by stduopollex August 2015
• The reason it doesn't work is because some browsers no longer support (for good reason) the horribly broken RC4 cipher. Unfortunately, it seems whoever configured their TLS frontend's cipher suite enabled ONLY this cipher. Refer to: https://ssllabs.com/ssltest/analyze.html?d=billing.arcgames.com Some of their other web…

  in http://billing.arcgames.com/en/ not working...want zen Comment by stduopollex August 2015