Re: [WebDNA] Paypal Cert

This WebDNA talk-list message is from

2015


It keeps the original formatting.
numero = 112509
interpreted = N
texte = 87 Hi Michael, Unfortunately WebDNA 6.2 for OSX was linked against OpenSSL 0.9.7: # otool -L WebCatalog WebCatalog: /System/Library/Frameworks/JavaVM.framework/Versions/A/JavaVM = (compatibility version 1.0.0, current version 1.0.0) /System/Library/Frameworks/Carbon.framework/Versions/A/Carbon = (compatibility version 2.0.0, current version 136.0.0) /usr/lib/libSystem.B.dylib (compatibility version 1.0.0, current = version 111.1.1) /usr/lib/libssl.0.9.7.dylib (compatibility version 0.9.7, current = version 0.9.7) /usr/lib/libcrypto.0.9.7.dylib (compatibility version 0.9.7, current = version 0.9.7) I believe this was built back in 2009. The Linux WebDNA 6.2 was built against 0.9.8, so it should be able to = support SHA256. I cannot be certain what the last OSX version to link against the older = OpenSSL is, but, running "otool -L WebCatalog" will show what libraries = the binary is linked to. All of the most recent WebDNA versions are linked against OpenSSL 0.9.8 = on OSX, and OpenSSL 1.0.x on Linux. They will support SHA256. - chris >>=20 >>> Christophe, >>>=20 >>> I have a situation where the code I use for PayPal IPN service = stopped functioning on 9/17 and I think it coincides with PayPal = upgrading their SSL cert to a SHA256. Does the Apache module make a = direct connection when using TCPConnect, or does it rely on Apache or = the OS in some way? SHA256 is supported in OS X 10.5 and up, and Apache = 2.0.63+ w/ OpenSSL 0.9.8o+. I'm running OS X 10.6.8 with Apache 2.2.24 = w/ OpenSSL 0.9.8y. WebCat Server version 6.2. >>>=20 >>> [TCPConnect host=3Dwww.paypal.com&ssl=3DT&port=3D443][!] Send data = in https post back to PayPal >>> [/!][TCPSend]POST /cgi-bin/webscr HTTP/1.0[UnURL]%0D%0A[/UnURL][!] >>> [/!]Content-type: = application/x-www-form-urlencoded[UnURL]%0D%0A[/UnURL][!] >>> = [/!]Content-length:[CountChars][post_data][/CountChars][UnURL]%0D%0A[/UnUR= L][!] >>> [/!][UnURL]%0D%0A[/UnURL][!] >>> [/!][post_data][UnURL]%0D%0A[/UnURL][!] >>> [/!][UnURL]%0D%0A[/UnURL][!] >>> [/!][/TCPSend][!] >>> [/!][/TCPConnect] >>>=20 >>>=20 >>> In the ErrorLog.txt for this site: >>>=20 >>> 09/17/201513:07:22SHOWPAGE173.000.081.001Error: = couldn't connect to host [www.paypal.com] /ipn.tpl= ^DataSprocketsEngine/includes/ipn.inc >>> 09/17/201514:28:20SHOWPAGE173.000.081.001Error: = couldn't connect to host [www.paypal.com] /ipn.tpl= ^DataSprocketsEngine/includes/ipn.inc >>> ... >>>=20 >>> Cert info from PayPal: = https://www.paypal-knowledge.com/infocenter/index?page=3Dcontent&widgetvie= w=3Dtrue&id=3DFAQ1766 >>>=20 >>>=20 >>> Is there any reason I should not be looking at WebCat on this? = Should I be looking elsewhere? >>>=20 >>>=20 >>>=20 >>> Thanks! >>>=20 >>>=20 >>> Mike --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us . Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] Paypal Cert (christophe.billiottet@webdna.us 2015)
  2. Re: [WebDNA] Paypal Cert (Donovan Brooke 2015)
  3. Re: [WebDNA] Paypal Cert (Donovan Brooke 2015)
  4. [WebDNA] Paypal Cert (Michael Davis 2015)
87 Hi Michael, Unfortunately WebDNA 6.2 for OSX was linked against OpenSSL 0.9.7: # otool -L WebCatalog WebCatalog: /System/Library/Frameworks/JavaVM.framework/Versions/A/JavaVM = (compatibility version 1.0.0, current version 1.0.0) /System/Library/Frameworks/Carbon.framework/Versions/A/Carbon = (compatibility version 2.0.0, current version 136.0.0) /usr/lib/libSystem.B.dylib (compatibility version 1.0.0, current = version 111.1.1) /usr/lib/libssl.0.9.7.dylib (compatibility version 0.9.7, current = version 0.9.7) /usr/lib/libcrypto.0.9.7.dylib (compatibility version 0.9.7, current = version 0.9.7) I believe this was built back in 2009. The Linux WebDNA 6.2 was built against 0.9.8, so it should be able to = support SHA256. I cannot be certain what the last OSX version to link against the older = OpenSSL is, but, running "otool -L WebCatalog" will show what libraries = the binary is linked to. All of the most recent WebDNA versions are linked against OpenSSL 0.9.8 = on OSX, and OpenSSL 1.0.x on Linux. They will support SHA256. - chris >>=20 >>> Christophe, >>>=20 >>> I have a situation where the code I use for Paypal IPN service = stopped functioning on 9/17 and I think it coincides with PayPal = upgrading their SSL cert to a SHA256. Does the Apache module make a = direct connection when using TCPConnect, or does it rely on Apache or = the OS in some way? SHA256 is supported in OS X 10.5 and up, and Apache = 2.0.63+ w/ OpenSSL 0.9.8o+. I'm running OS X 10.6.8 with Apache 2.2.24 = w/ OpenSSL 0.9.8y. WebCat Server version 6.2. >>>=20 >>> [TCPConnect host=3Dwww.paypal.com&ssl=3DT&port=3D443][!] Send data = in https post back to PayPal >>> [/!][tcpsend]POST /cgi-bin/webscr HTTP/1.0[unurl]%0D%0A[/UnURL][!] >>> [/!]Content-type: = application/x-www-form-urlencoded[unurl]%0D%0A[/UnURL][!] >>> = [/!]Content-length:[countchars][post_data][/CountChars][unurl]%0D%0A[/UnUR= L][!] >>> [/!][unurl]%0D%0A[/UnURL][!] >>> [/!][post_data][unurl]%0D%0A[/UnURL][!] >>> [/!][unurl]%0D%0A[/UnURL][!] >>> [/!][/TCPSend][!] >>> [/!][/TCPConnect] >>>=20 >>>=20 >>> In the ErrorLog.txt for this site: >>>=20 >>> 09/17/201513:07:22SHOWPAGE173.000.081.001Error: = couldn't connect to host [www.paypal.com] /ipn.tpl= ^DataSprocketsEngine/includes/ipn.inc >>> 09/17/201514:28:20SHOWPAGE173.000.081.001Error: = couldn't connect to host [www.paypal.com] /ipn.tpl= ^DataSprocketsEngine/includes/ipn.inc >>> ... >>>=20 >>> Cert info from PayPal: = https://www.paypal-knowledge.com/infocenter/index?page=3Dcontent&widgetvie= w=3Dtrue&id=3DFAQ1766 >>>=20 >>>=20 >>> Is there any reason I should not be looking at WebCat on this? = Should I be looking elsewhere? >>>=20 >>>=20 >>>=20 >>> Thanks! >>>=20 >>>=20 >>> Mike --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us . christophe.billiottet@webdna.us

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Probably a very simple question? (1997) Database Upload (2000) ErrorLog with Linux? (2000) Security for malls with different webmasters (1998) Signal Raised Error (Part III) (1997) [WebDNA] Off topic: ImageMagick (2008) Preventing Merchant Settling ? (1997) Erotic Sites (1997) Getting total number of items ordered (1997) [WebDNA] can webdna set the email header (w/[sendmail]) that controls where bounced email goes? (2012) Major Security Hole (solution with Welcome) (1998) Problem with my orders (1998) WebCommerce: Folder organization ? (1997) ThreadMem ignored? (1998) WebCat2 several catalogs? (1997) WebCat2 - [format thousands] (1997) Web Catalog 2 demo (1997) WebCat Redundancy (2000) headers in webcat 4.0. (2000) pc (1997)