Comments (4)
SergioGlorias
commented on June 2, 2024
from lila.
benediktwerner
commented on June 2, 2024
Have you tested this? Without lichess1.org, the whole site should be broken but I didn't notice any issues trying with iOS 14 in Browserstack. Checking the certificate chain with openssl, it looks like Cloudflare is using a cross-signed version of ISRG Root X2:
In addition, all platforms which trust ISRG Root X1 also trust the cross-signed version of ISRG Root X2.
Also would be surprised if Cloudflare would drop support for iOS 16 already.
Though ultimately, at some point older certificates expire anyways and there's nothing we can do against that. At some point, a device that doesn't receive any more updates becomes so outdated that it just can't be used anymore. Looks like ISRG Root X1 still has a decade left but we've already had this happen with the previous one a few years ago.
from lila.
SergioGlorias
commented on June 2, 2024
I haven't tested it directly, but I'm seeing who is having problems
Regarding iOS 14, there may have been an application update to extend support
As happened with Android 7 and below
Which currently no longer trusts lichess.org's current SSL certificate
I could also ask about it being android 14+
In addition, the operating system's internal systems may no longer have the certificate, but application certificates do.
from lila.
benediktwerner
commented on June 2, 2024
Do you have any specific cases/versions that are having SSL issues? As mentioned, it looks like Cloudflare is using the cross-signed version of the X2 certificate which, according to the Let's Encrypt page you linked, works on all devices that trust X1.
Which makes sense, Android 14 only released last year, there's no way Cloudflare would already break that. Same for iOS 16 as already mentioned above.
As for devices that don't even trust X1, I'm not sure we can reasonably do much about that. The best option is probably to use something like Firefox which has its own trust store. But such devices must already be lacking years of security updates and probably shouldn't connect to the internet at all. Given how ubiquitous Let's Encrypt is, they probably also can't use most other websites either.
from lila.
Related Issues (20)
- Video search API HOT 1
- Add keyboard shortcuts to the board editor HOT 2
- On mobile, the TV pages don't wakelock.
- Analysis board should not show & link to unreviewed wikibooks pages HOT 2
- Add hand grab cursor when moving pieces HOT 2
- Puzzles winning sound is really annoying. Please add more premium sounds
- Lichess UI needs a a modern rework HOT 2
- L shaped arrows
- Removing unpopular, barely used and meme piece sets HOT 5
- Option to toggle on/off dropshadow for pieces
- Remove initial position ghost piece when grabbed HOT 1
- Slightly highligh square for where the piece should drop - only the margins of the square and not the entire of the square
- Scale piece by a 1.x value when grabbed for better visualisation HOT 1
- Please add more premium "heavier" sounds for the pieces HOT 1
- Please add a "Check" , "Checkmate" and "Draw" Sounds HOT 3
- Lichess Blog: User with `Pages` permission HOT 1
- fix infinite scroll of Broadcasts Private list HOT 3
- Viewing Broadcast - Source realizes they've sent a wrong move, and sends a correction - Viewer stuck on variation HOT 3
- Broadcast: Make `REC` disabled by default and make it forget as soon as a page is updated HOT 1
- reproducible stockfish OOM HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from lila.