'Issues using api.twitter.com from Windows 2012 R2 in .NET - Twitter seem to have removed some ciphers - Anyone have any workarounds?

Sometime yesterday, A .Net (4.7.2) app that accesses the Twitter api stopped working with an error "The request was aborted: Could not create SSL/TLS secure channel" when calling System.Net.HttpWebRequest.GetRequestStream() on Windows 2012 R2 machines. It's fine in 2016 / 2019.

It looks like Twitter have made changes and now support only 3 ciphers:

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

... none of which Windows 2012R2 supports:

https://docs.microsoft.com/en-us/windows/win32/secauthn/tls-cipher-suites-in-windows-8-1

Does anyone know

(a) - is there a way to update the ciphers in Windows 2012R2 to support these newer ones

or

(b) - is there a way in .Net to use a different set of ciphers? (the Chrome browser, for example, continues to work in Windows 2012R2). Or will .Net only use the machine's ciphers?

Thanks in advance.

apissltwitterwindows2012


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

Secure cookies flag always getting lost in first session after resetting IIS

Solving sslv3 alert handshake failure when trying to use a client certificate

Nginx the event was not signaled for 5s

Getting error "403 - Forbidden: Access is denied" on browser when user is NOT administrator

Disable SSLHandshakeException for a single connection

How to fix ssl.SSLError: [SSL: WRONG_VERSION_NUMBER] wrong version number (_ssl.c:1056)?

tls unsigned certificate when using terraform

Library not loaded: /opt/local/lib/libssl.1.0.0.dylib (LoadError)

SSL certificate error for IE users only

Mongodb SSL - unable to get issuer certificate

Where can I find the WAMP error log?

How to convert certificate from PEM to JKS?

CondaHTTPError: HTTP 000 CONNECTION FAILED for url - Anaconda

Getting Chrome to accept self-signed localhost certificate

"ssl module in Python is not available" when installing package with pip3