Authorize.net SSL 3.0

[FrankZoid]

Can anyone tell me if the conversion to SSL 3.0 at authorize.net will affect my WHMCS? In other words, is WHMCS using the SSL 3.0 standard?

 

Received this today:

 

During the week of March 16 - 20, 2009, Authorize.Net will be deprecating all legacy support for the SSL 2.0 protocol. Changes have recently been made to the Payment Card Industry Data Security Standard (PCI DSS) which have made the use of SSL 2.0 a PCI DSS violation.

 

Due to this change, it is critical that you update any applications or integrations that may be using the SSL 2.0 protocol to support the more current SSL 3.0/TLS 1.0 protocols. Failure to upgrade your applications or integrations may result in a lost ability to successfully process transactions via the Authorize.Net Payment Gateway.

[acenetryan]

I received this notification as well and am curious if WHMCS addresses this.

 

The authorize.php file is encoded so I can't see whether this module is using the correct SSL version.

 

AFAIK, the module needs to simply make sure that the CURLOPT_SSLVERSION is set to 3 if it's using cURL. Though, a dev would probably know better whether this is all that's required.