PayPal New Security Question 2016

**addlink** · 24 Jun 2016, 04:31 PM

Running ZC 1.3.9F
June 2016 PayPal announces they are changing requirements for PayPal purchases and are asking if my current ZC security is compatible with SHA-256? any reference on this? Is there an update ZC patch required?

**lat9** · 24 Jun 2016, 04:53 PM

You can refer to the information that DrByte previously posted: https://www.zen-cart.com/showthread....s-in-2015-2016

In short, the requirement is on your hosting-company to provide the "proper" security protocols.

**RodG** · 25 Jun 2016, 09:34 AM

Originally Posted by addlink

Running ZC 1.3.9F
June 2016 PayPal announces they are changing requirements for PayPal purchases and are asking if my current ZC security is compatible with SHA-256? any reference on this? Is there an update ZC patch required?

This particular change was implemented last week. If it were going to cause you any problems it would have already done so by now.

They also had many other changes planned for later this year - Unless I'm mistaken, these have all been extended out until *next* June, IOW things are probably going to be OK for at least another 12 months.

Just thought it worth a mention.

Cheers
RodG

**DrByte** · 26 Jun 2016, 12:25 AM

Originally Posted by addlink

Running ZC 1.3.9F

That software was released in 2010. It is now the middle of 2016.

While this PayPal notice may not be an immediate issue, you are running software that depends on VERY OLD UNSUPPORTED VERSIONS OF PHP.

YOU NEED TO UPGRADE.
Put a plan in place now. Before your server forces you.