Jump to content
  • 0

Paypal Merchant upgrade to TLS 1.2

Digitalwork

Asked by Digitalwork,

 Share

Question

Digitalwork Newbie

Digitalwork

Posted
Posted

Blesta,

We currently have Blesta 3.6.2 and Paypal Payflow Pro + ACH (ver 1.2.1) gateway.  We got an email from Paypal that after performing Merchant Security Testing, we were impacted if they made the switchover to complete supporting only TLS 1.2 

Do we need to upgrade Blesta or the gateway plugin in order to accomplish this ?

 

Thanks. 

9 answers to this question

Recommended Posts

  • 0
Tyson Newbie

Tyson

Posted
Posted

Neither Blesta nor the gateway requires an update to support TLS 1.2. This is server-related. You should contact your hosting company and tell them you need them to support TLS 1.2.

  • 1
Paul Rising Star

Paul

Posted
Posted
2 minutes ago, Digitalwork said:

Gotchya.

I host it over digital ocean so i can definitely upgrade the droplet as needed. I will upgrade to Centos 6.9. 

I understand the OS piece, but does this have anything to do with the SSL Protocols that are being set in the webserver piece were Blesta is running ?

It doesn't have anything to do with Blesta specifically, but rather SSL/TLS on the server. There are 2 parts to it SSL/TLS in Apache (inbound requests) and SSL/TLS in PHP (outbound requests). CentOS 6 < 6.8 can do TLS 1.2 in Apache for inbound requests, but not outbound requests. This is why it's important to upgrade to 6.8 minimum. I think 6.9 is latest in that release, so that should be ok. No issues with CentOS 7.x

  • 0
Digitalwork Newbie

Digitalwork

Posted
  • Author
Posted

Gotchya.

I host it over digital ocean so i can definitely upgrade the droplet as needed. I will upgrade to Centos 6.9. 

I understand the OS piece, but does this have anything to do with the SSL Protocols that are being set in the webserver piece were Blesta is running ?

  • 0
Paul Rising Star

Paul

Posted
Posted
6 hours ago, gutterboy said:

Is this the case for all Blesta version? We are still running 3.2.2.

Thanks!

I would highly suggest an upgrade! :blesta: But yes, it should work in the right server environment. If RHEL/CentOS, v6.8 MINIMUM.

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
 Share
Go to question listing
×
×
  • Create New...