Version 5.2.8 build 5 or 6 causing Internet Explorer 11 to stop working

[Hedloff]

Hello,

We updated from build 4 yesterday. Today customers are calling about websites not working on Internet Explorer 11.
But I switched to version 5.2.7 and then site is loading properly again.

Is it a known bug?
We only have support for TLS 1.2 on our server on port 443.

 

[Hedloff]

We also had alot of reports of other issues. Like calls to/from carrier providers not working.
Sites just loading with 403 errors.

So it's a bug and hopefully you can revert the changes. It worked fine on build 4 of version 5.2.8

 

[Jon K]

Are you running cPanel and their default cipher suite? If so, Apache and older version of LSWS does not support "CHACHA20-POLY1305", so this configuration has no effect, so the default Apache cipher suite is used and it includes "ECDHE-RSA-AES128-SHA". While the latest builds of LSWS support using the new BoringSSL package which supports "CHACHA20-POLY1305" and TLSv1.3, so the configuration actually applied which resulted in IE 11 and other older browsers not successfully negotiating a SSL cipher with the latest version of LSWS. The fix is simple, just add "ECDHE-RSA-AES128-SHA" to the end of the cipher list and shouldn't see the handshake failures anymore. This is a cPanel issue that we have reported to them.

 

[mistwang]

latest 5.2.8 build 7 should take care of those issues.