An example: https://cointelegraph.com/
I've even tried to replace XP's schannel.dll with the most updated one from Server 2008 x86 version, which doesn't work.
Any help would be greatly apreaciated!

Thank you, 5eraph. We all owe you a lot here.5eraph wrote:All I can suggest at the moment is to try Firefox. Still works under XP, and displays that website without incident.
In my experience the only problem of this nature occurs when using the last version of Chromium that supported XP which is 49.0.2623.23. Apparently Chromium depends on libraries supplied by the OS for elliptical curve cryptography which means in practice that certain https sites are not available under XP.david.lynch wrote: ...unfortunately many other online resources are stopping to work, as they rely on functionality provided by Windows and not by an alternative web browser...
I tried replacing XP's schannel.dll with the one available for Reactos which does support TLS 1.2, but I only managed to screw up my system. It ought to be possible to use the source code for the Reactos schannel.dll and perhaps Wine libraries to make a replacement for the XP schannel.dll, but not being a programmer I do not know how realistic this would be.david.lynch wrote:I've even tried to replace XP's schannel.dll with the most updated one from Server 2008 x86 version, which doesn't work.
Some apps force an IE browser window for logging on, so it could be very useful for that scenario.Zephyr wrote: ↑Tue Feb 06, 2018 4:27 amI am not sure how this patch could be useful considering that only Microsoft applications use the OS cryptographic libraries, while all the third party browsers and email clients have built-in support for TLS 1.1 and TLS 1.2. I would love to have these more advanced protocols enabled in Outlook Express because it was the greatest email client ever produced, but unless someone can find a way of hacking the msimn.exe this will be an impossible dream. There is, of course. OE Classic which copies much of the GUI and functionality of OE, but it still does not support IMAP accounts.
If possible, it might be useful to some if you could post a list of apps that work correctly if IE6.x is installed and break if IE8.x+ is installed. Or, someone might be able to figure out how to make them work with IE8.x. Just a thought.mockingbird wrote: ↑Tue Feb 06, 2018 1:54 pmPersonally, I leave IE at 6.x on my XP x64 machine since I have no use for it. Some old apps break if anything higher than 6.x is installed.
Code: Select all
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WindowsEmbedded\ProductVersion]
"FeaturePackVersion"="SP3"
[HKEY_LOCAL_MACHINE\SYSTEM\WPA\WEPOS]
"Installed"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\WPA\WES]
"Installed"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\WPA\PosReady]
"Installed"=dword:00000001
Code: Select all
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Server]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
Code: Select all
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\CRYPTO\TLS1.1]
"OSVersion"="3.5.1.0.0"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\CRYPTO\TLS1.2]
"OSVersion"="3.5.1.0.0"
Code: Select all
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WindowsEmbedded\ProductVersion]
"FeaturePackVersion"="SP3"