Jump to content

CubeCart & SSLv3 Vulnerability (POODLE)


Al Brookbanks

Recommended Posts

There has been a lot of information in the press recently around the SSLv3 vulnerability known as POODLE.
 
As a result of this payment companies will be dropping support for SSLv3 shortly or have done so already.
 
PayPal -  3rd of December 2014 at 12:01 (PST)
Authorize.net - 4th of November 2014

 

There are too many integrations to list here so please refer to your provider for further information.

 

CubeCart automatically negotiates the SSL version based on your server configuration. As a result there is no need for any code changes to be made to your store. We would recommend that you check with your server administrator or web hosting company that support for SSLv3 has been dropped and if not when they intend to do so. No further action is then needed.
 
Prior to PayPal disabling SSLv3 it is possible to test your store on their test "Sandbox" environment which has already has had SSLv3 disabled.

Link to comment
Share on other sites

×
×
  • Create New...