| ||||||||||
Shopping cart software Solutions for online shops and malls | ||||||||||
|
#81
|
|||||||||
|
|||||||||
Re: POODLE vulnerability in SSLv3
The initial error doesn't make sense for your situation so either way you're just trying to track it down. That is not an X-Cart error but a server error. At the least the host should be able to help identify the cause. It seems that there is something clearly different about this store and how it triggers the error that is unique from the other stores.
|
|||||||||
#82
|
|||||||
|
|||||||
Re: POODLE vulnerability in SSLv3
Quote:
__________________
Thomas / USA XCart V4.4.5 Gold XCart Mobile V1.4.12 XCart X-PDF XCart X-HotProducts AlteredCart Checkout One (One Page Checkout) BCSE Back In Stock CFL Holiday Message CFL System Message Smack Digital (WebsiteCM) Remember Anon Carts xcartmods Testimonials xcartmods reCAPTCHA for X-Cart Classic Unix, PHP 7.0 (patched 5.4). MySQL 5.6 |
|||||||
#83
|
|||||||||
|
|||||||||
Re: POODLE vulnerability in SSLv3
You guys were right! It was a mod_security error! Is there any way to white-list my IP from csf mod_security?
I'm whitelisted from configserver firewall in general - but I guess not from csf mod_security. Thanks so much for your great help.
__________________
Jim - X-cart Gold 4.4.5 |
|||||||||
#84
|
|||||||
|
|||||||
Re: POODLE vulnerability in SSLv3
Installed the patch in my V4.4.5 site today. Just as a heads up, the provided func.https_curl.php and func.https_lbcurl.php files are missing the PayPal IPN https patch from March 2014, so they were manually patched with the POODLE related code. But the other files were a simple copy/replace for me.
__________________
Thomas / USA XCart V4.4.5 Gold XCart Mobile V1.4.12 XCart X-PDF XCart X-HotProducts AlteredCart Checkout One (One Page Checkout) BCSE Back In Stock CFL Holiday Message CFL System Message Smack Digital (WebsiteCM) Remember Anon Carts xcartmods Testimonials xcartmods reCAPTCHA for X-Cart Classic Unix, PHP 7.0 (patched 5.4). MySQL 5.6 |
|||||||
|
#85
|
|||||||
|
|||||||
Re: POODLE vulnerability in SSLv3
Quote:
You are right this is the 'AuthorizeNet - AIM' module. We will fix this misprint in the description.
__________________
Sincerely yours, Ildar Amankulov Head of Maintenance group |
|||||||
|
#86
|
|||||||||
|
|||||||||
Re: POODLE vulnerability in SSLv3
Risa,
You cannot find X-Payments connector file in your X-Cart 4.0.19 because most probably you do not use X-Payments and do not have X-Payments connector installed. If so, you do not need to patch X-Payments connector files in your X-Cart, but you still need to take care of the rest of X-Cart patches. Quote:
__________________
Sincerely yours, Alex Mulin VP of Business Development for X-Cart X-Payments product manager |
|||||||||
#87
|
|||||||
|
|||||||
Re: POODLE vulnerability in SSLv3
Hi, applied the 4.4.5 patches to my 4.4.2 installation and now I cannot checkout using SagePay Form, it hangs on "your order is being placed". If I restore the original files I replaced i.e.
func.https_curl.php func.https_libcurl.php func.https_openssl.php func.https_ssleay.php and netssleay.pl It works fine. How do I troubleshoot this further?
__________________
4.4.2 and 4.6.1 |
|||||||
|
#88
|
|||||||
|
|||||||
Re: POODLE vulnerability in SSLv3
I had the Poodle patch applied and got tthe successful installatiuon message last week. Since Authorize.net disabled SSLv3 on 11/4 I cannot process orders. I get this message: "Order processing error Order declined. Review your data or contact the store administrator."
I contacted Authorize.net and they asked me to provide an error string but I don't know where to find it. My Host and SSL provider are Hostgator and they said they have already made the needed changes to their system for Poodle. Any ideas? |
|||||||
#89
|
|||||||
|
|||||||
Re: POODLE vulnerability in SSLv3
Quote:
__________________
Thomas / USA XCart V4.4.5 Gold XCart Mobile V1.4.12 XCart X-PDF XCart X-HotProducts AlteredCart Checkout One (One Page Checkout) BCSE Back In Stock CFL Holiday Message CFL System Message Smack Digital (WebsiteCM) Remember Anon Carts xcartmods Testimonials xcartmods reCAPTCHA for X-Cart Classic Unix, PHP 7.0 (patched 5.4). MySQL 5.6 |
|||||||
#90
|
|||||||
|
|||||||
Re: POODLE vulnerability in SSLv3
I'm having the same issues and can't iron it out.
Xcart 4.2.3 - not using xpayments Error log shows: Code:
Any ideas? Testing on the server to connect to the gateway gives: Code:
Any thoughts?
__________________
x-cart 4.2.3 & 4.6.0 |
|||||||
|
|||
X-Cart forums © 2001-2020
|