Re: Sudden error with CFHTTP and SSL
If they have disable the older SSL protocols here are two blog posts I did on how to handle that with CFHTTP and your Java version. Java Version http://www.trunkful.com/index.cfm/2014/11/24/ColdFusion-JVM-SSL-CA-CERTS-and-POODLE CFHTTP and JVM switches http://www.trunkful.com/index.cfm/2014/12/8/Preventing-SSLv3-Fallback-in-ColdFusion If they have disabled TLSv1.0 then we could have bigger troubles. Regards, Wil Wil Genovese Sr. Web Application Developer/ Systems Administrator CF Webtools www.cfwebtools.com wilg...@trunkful.com www.trunkful.com > On Apr 1, 2015, at 5:41 PM, Russ Michaels wrote: > > > I suspect they disabled various ssl protocols due to poodle, you should ask > them. The default response ro poodle was to disable everything except > latest tls version, which is not supported out of the box by the jvm that > ships with cf9. > > > On Mon, Mar 30, 2015 at 18:33 PM, <> wrote: > > > Hi, > I have an application under CF 9 with a paiment module using Paypal. > At the end of the process, Paypal acknowledges the paiement and my app > calls a Paypal page to validate the whole operation. This is done with a > CFHTTP call > This application has been working fine for years with no modification, bur > all of a sudden starting March 23rd, I get this error: > I/O Exception: peer not authenticated > It appears to be an error with the SSL certificate, but how come ? > The Paypal site is verified by Verisign. > What ca I do? > > > > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360347 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Sudden error with CFHTTP and SSL
I suspect they disabled various ssl protocols due to poodle, you should ask them. The default response ro poodle was to disable everything except latest tls version, which is not supported out of the box by the jvm that ships with cf9. On Mon, Mar 30, 2015 at 18:33 PM, <> wrote: Hi, I have an application under CF 9 with a paiment module using Paypal. At the end of the process, Paypal acknowledges the paiement and my app calls a Paypal page to validate the whole operation. This is done with a CFHTTP call This application has been working fine for years with no modification, bur all of a sudden starting March 23rd, I get this error: I/O Exception: peer not authenticated It appears to be an error with the SSL certificate, but how come ? The Paypal site is verified by Verisign. What ca I do? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360346 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
RE: Sudden error with CFHTTP and SSL
Try taking the restricted ip addresses out of your paypal account - we ran into this as well and after 2 days of battling it, this did fix the issue for us Sincerely, Kurt Kaptein President Spectrum Net Designs, Inc PO Box 806 Grandville, MI 49468 Ph: 616-538-2914 Toll Free: 866-773-2638 Fax: 616-538-5691 Visit our Website: www.spectrumnetdesigns.com Email: k...@spectrumnetdesigns.com -Original Message- From: Michael Grant [mailto:mgr...@modus.bz] Sent: Wednesday, April 1, 2015 3:29 PM To: cf-talk Subject: Re: Sudden error with CFHTTP and SSL This sounds like it could be the Poodle vulnerability that I faced a few months back when Chase Paymentech disabled SSL 3.0. What version of Java is the server running? Java 7 allows SSL 3.0 to negotiate using TLS. I had to convince my host to update from Java 6. On Mon, Mar 30, 2015 at 1:33 PM, <> wrote: > > Hi, > I have an application under CF 9 with a paiment module using Paypal. > At the end of the process, Paypal acknowledges the paiement and my app > calls a Paypal page to validate the whole operation. This is done with > a CFHTTP call This application has been working fine for years with no > modification, bur all of a sudden starting March 23rd, I get this > error: > I/O Exception: peer not authenticated > It appears to be an error with the SSL certificate, but how come ? > The Paypal site is verified by Verisign. > What ca I do? > > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360342 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Sudden error with CFHTTP and SSL
This sounds like it could be the Poodle vulnerability that I faced a few months back when Chase Paymentech disabled SSL 3.0. What version of Java is the server running? Java 7 allows SSL 3.0 to negotiate using TLS. I had to convince my host to update from Java 6. On Mon, Mar 30, 2015 at 1:33 PM, <> wrote: > > Hi, > I have an application under CF 9 with a paiment module using Paypal. > At the end of the process, Paypal acknowledges the paiement and my app > calls a Paypal page to validate the whole operation. This is done with a > CFHTTP call > This application has been working fine for years with no modification, bur > all of a sudden starting March 23rd, I get this error: > I/O Exception: peer not authenticated > It appears to be an error with the SSL certificate, but how come ? > The Paypal site is verified by Verisign. > What ca I do? > > > ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360340 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Sudden error with CFHTTP and SSL
Hi, I have an application under CF 9 with a paiment module using Paypal. At the end of the process, Paypal acknowledges the paiement and my app calls a Paypal page to validate the whole operation. This is done with a CFHTTP call This application has been working fine for years with no modification, bur all of a sudden starting March 23rd, I get this error: I/O Exception: peer not authenticated It appears to be an error with the SSL certificate, but how come ? The Paypal site is verified by Verisign. What ca I do? ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:360320 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
