Zen-cart Disable SSLv3

Zen-cart Disable SSLv3 please refer to http://www.zen-cart.com/showthread.php?214916-Important-announcement-about-POODLE-and-payment-security

Addtional: Zencart old version such as 1.3.8 and older, the paypal sandbox API url need to be changed to the new urls to run a sandbox test. Else you will run into this error “paypal error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure”.

Three files affected

  • includes/modules/payment/paypaldp.php
  • includes/modules/payment/paypal/paypal_curl.php
  • includes/modules/payment/paypalwpp.php

Fix:
change

'sandbox' => 'https://api.sandbox.paypal.com/nvp' 

to

'sandbox' => 'https://api-3t.sandbox.paypal.com/nvp'

If you run a delicated sever or an VPS, you would like to disable SSLv3 on your severs.
You can use the special scripts below to disable SSLv3 for all services. For Linux – Disables Apache, nginx, proftpd, courier-imap, qmail, postfix, dovecot, Plesk server engine (for versions 11.5 and later).

SH http://kb.sp.parallels.com/Attachments/kcs-40007/ssl_v3_disable.zip

Refer http://kb.sp.parallels.com/en/123160

Add a Comment

Your email address will not be published.