[wp-trac] [WordPress Trac] #36320: PayPal 2016 merchant security upgrades - Core defaults need to be changed
WordPress Trac
noreply at wordpress.org
Thu Mar 24 14:22:24 UTC 2016
#36320: PayPal 2016 merchant security upgrades - Core defaults need to be changed
--------------------------+------------------------
Reporter: reidbusi | Owner:
Type: defect (bug) | Status: closed
Priority: normal | Milestone:
Component: General | Version: 4.4.2
Severity: normal | Resolution: duplicate
Keywords: | Focuses:
--------------------------+------------------------
Comment (by mikejolley):
@reidbusi as I mentioned this is also something controllable at host
level. You can disable old protocols. http://disablessl3.com/
More info on insecure protocols https://www.howsmyssl.com/s/about.html
Sure patching the calls in PPS might be a good workaround and viable for
WC core, but other requests (not PPS) will still potentially be insecure.
> I will just do it myself. I might release the plugin, but given the
attitude I see on this subject I may not and just let the zillions of
WooCommerce sites affected by this fail.
You are welcome to submit a PR/raise this on WooCommerce Github if you
find a workaround. No need to take this kind of attitude...
--
Ticket URL: <https://core.trac.wordpress.org/ticket/36320#comment:6>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list