Why Overstock Supplier Portal Resets Connections
Overstock’s supplier and partner portal is hosted on Oracle Cloud Infrastructure (OCI) with Cloudflare as the CDN layer. The portal uses TLS 1.3 with ECH for all authenticated sessions. When suppliers access the portal from macOS Safari, the ECH-enabled ClientHello can be blocked by ISP gateways that implement SSL inspection, particularly in regions with older network infrastructure.
Oracle Cloud’s TLS configuration does not support TLS 1.2 fallback for authenticated sessions, as OCI’s security policy mandates ECH for all connections. When the ISP gateway resets the ECH-enabled ClientHello, the handshake fails and the connection is terminated.
Browser Integrity Sync on OCI-Hosted Platforms
Overstock’s portal uses browser integrity sync to validate supplier sessions across Oracle’s load balancers. When the TLS handshake is interrupted, the integrity sync fails, and OCI’s security layer blocks the supplier’s access, requiring re-authentication with a fresh TLS session.
Fixing Overstock Supplier Portal TLS Errors
Using Firefox with TLS 1.2 Forced
Firefox allows disabling TLS 1.3 via about:config → security.tls.version.max → set to 3 (this limits TLS to version 3, which is TLS 1.2). Download Firefox and configure this setting, then access Overstock Supplier Portal. Firefox’s TLS stack will negotiate TLS 1.2, which does not require ECH, allowing the handshake to complete through ISP gateways that do not support ECH.
Disabling SSL Inspection for Overstock Domains
Configure your network proxy to bypass Overstock’s domains. In macOS, navigate to System Settings → Network → Wi-Fi → Details → Proxy. Add *.overstock.com, *.supplier.overstock.com to the bypass list. This routes Overstock traffic without SSL inspection, allowing ECH to function.
Checking Overstock Platform Status
Search “is the platform down right now” for Overstock’s status page. If an active incident is reported, the connection reset is infrastructure-driven and will resolve once Overstock’s engineering team restores normal operation.
Call to Action
Use the webs.ninja network lab to run a TLS handshake diagnostic for Overstock’s supplier portal. The diagnostic identifies whether the reset is caused by ECH interference, a Cloudflare edge node failure, or a platform incident, directing the fix to the correct layer.