Paypal POODLE SSL 3.0 Vulnerability

paypal

pay

problems

processes

ssl

processing

protect

merchants

protocol

reliant

newton 2014-11-12 18:40:07 UTC #1

Was wondering if this issue will affect ejunkie and the way it processes Paypal transactions:

On Tuesday, October 14, 2014, details were released that version 3 of Secure Sockets Layer (SSL 3.0) is vulnerable at the protocol level. SSL provides encryption to protect your information from attackers. Many websites and internet businesses are reliant on SSL 3.0.

Since many merchants rely on SSL 3.0 to connect to PayPal, we havenâ€™t immediately turned it off. However, to help mitigate risk associated with this vulnerability, weâ€™re urging our merchants to disable SSL 3.0 as soon as possible. Unfortunately, this necessary step may cause compatibility problems resulting in the inability for customers to pay with PayPal on your site or other processing issues that weâ€™re still trying to identify.

E-junkie_Guru 2014-11-12 20:27:40 UTC #2

Yes, in fact v3 of SSL is long obsolete, so we have supported connections using newer versions of SSL for some time now; moreover, due to recently announced vulnerabilities in SSL v3 such as you referenced, our sysadmin has completely disabled legacy SSLv3 support in our servers' SSL software.

newton 2014-11-12 20:32:55 UTC #3

That is great to hear, thank you for the quick response!

SOLUTIONS FEATURES PRICING DISCOVER PRODUCTS CONTACT HELP DOCS DASHBOARD

Forum

E-junkie Community Forum

Share and learn in the E-junkie community.