[nitrogen]

I was unable to connect using a vendor-specific browser on an old Android 4 device. Is this a limitation of the LE cert, or a cipher suite issue with older browsers, or something else?

Really looking forward to spreading HTTPS far and wide.

[pugtor]

Taking a guess from the SSL Labs report[1], that site appears to be using the modern config from Mozilla's toolkit[2], which limits it to browsers from the last few years.

1: https://www.ssllabs.com/ssltest/analyze.html?d=helloworld.le... 2: https://mozilla.github.io/server-side-tls/ssl-config-generat...

[newman314]

It's also throwing a OSCP error as well as no HSTS/HPKP headers to get to A+ grade.

[pugtor]

But hey, it's got OCSP stapling!

[joshmoz]

Checked with a sysadmin. I'm pretty sure it's a ciper suite mismatch. The helloworld site is configured with "modern" settings from this page:

https://mozilla.github.io/server-side-tls/ssl-config-generat...