[wp-trac] [WordPress Trac] #36320: PayPal 2016 merchant security upgrades - Core defaults need to be changed
WordPress Trac
noreply at wordpress.org
Tue Mar 29 14:56:12 UTC 2016
#36320: PayPal 2016 merchant security upgrades - Core defaults need to be changed
--------------------------+------------------------
Reporter: reidbusi | Owner:
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: HTTP API | Version: 4.4.2
Severity: major | Resolution: duplicate
Keywords: | Focuses:
--------------------------+------------------------
Comment (by reidbusi):
Replying to [comment:15 mozzak]:
Hi @mozzak
I did not see that error in testing on my host.
However, I have produced a new plugin that tells WordPress to use TLS 1.2
for https curl requests to paypal urls (live and sandbox). Instead of the
previous plugin which told WordPress to use streams before curl.
Note that this plugin requires that TLS 1.2 and HTTP/1.1 are working in
PHP/curl on your server. It does not check for the curl version. The same
disclaimers as the previous plugin apply. Uninstall and delete the
previous plugin before installing and activating this one.
https://drive.google.com/file/d/0BzyS7-wCVjeOQTNERzFERm9paHc/view?usp=sharing
It is interesting to note that this works fine on my hosts server where
curl is version 7.19.7, where previous comments would led to believe it
would not work unless curl was version 7.34 or later.
I will think about submitting this one to the plugin repository.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/36320#comment:16>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list