Menu
Community /Pin to ProfileBookmark
@code-lightningMar 02.2023 — #Hey computergenius, interesting question. Any further details you can share regarding which versions of cURL and OpenSSL you're using? It sounds like it might be related to changes in the default setting of 
@themolitorMar 02.2023 — #Did a search and found this:
The error message "CURL error message : error:0A000152:SSL routines::unsafe legacy renegotiation disabled" indicates that there is an issue with the SSL/TLS configuration on either your server or the payment gateway server.
This error message specifically refers to a security feature called "Secure Renegotiation" which is used to protect against certain types of attacks on SSL/TLS connections. The error message indicates that the server has disabled support for insecure renegotiation, which may be necessary for the specific SSL/TLS configuration being used by your PHP cURL code.
There are a few things you can try to resolve this issue:
1. Update your PHP cURL version: Make sure you are using the latest version of PHP cURL on your server. If you are using an outdated version of PHP cURL, you may need to update it to a newer version that supports the latest SSL/TLS protocols.
2. Update your SSL/TLS configuration: Check your SSL/TLS configuration to ensure that it is up-to-date and meets current security standards. You may need to update your SSL/TLS certificates or modify your SSL/TLS configuration to support the latest protocols and ciphers.
3. Contact the payment gateway: If you are unable to resolve the issue on your own, contact the payment gateway support team for assistance. They may be able to provide more information about the specific SSL/TLS configuration requirements for their system and help you troubleshoot the issue.
Hope that helps! 🤘
Security Problem with cURL
I am trying to transmit data via PHP cURL to a payment gateway, but I am getting the error message “CURL error message : error:0A000152:SSL routines::unsafe legacy renegotiation disabled”.
A search on Google leaves me totally baffled. I can’t even figure out whether it is my server or the payment gateway server that is having problems.
This has worked for years until about 10 days ago.
Can anyone set me in the right direction?
Sign in
to post a comment7 Comments(s) ↴
1
@code-lightningMar 02.2023 — #Hey computergenius, interesting question. Any further details you can share regarding which versions of cURL and OpenSSL you're using? It sounds like it might be related to changes in the default setting of SSL_OP_LEGACY_SERVER_CONNECT0
@themolitorMar 02.2023 — #Did a search and found this:The error message "CURL error message : error:0A000152:SSL routines::unsafe legacy renegotiation disabled" indicates that there is an issue with the SSL/TLS configuration on either your server or the payment gateway server.
This error message specifically refers to a security feature called "Secure Renegotiation" which is used to protect against certain types of attacks on SSL/TLS connections. The error message indicates that the server has disabled support for insecure renegotiation, which may be necessary for the specific SSL/TLS configuration being used by your PHP cURL code.
There are a few things you can try to resolve this issue:
1. Update your PHP cURL version: Make sure you are using the latest version of PHP cURL on your server. If you are using an outdated version of PHP cURL, you may need to update it to a newer version that supports the latest SSL/TLS protocols.
2. Update your SSL/TLS configuration: Check your SSL/TLS configuration to ensure that it is up-to-date and meets current security standards. You may need to update your SSL/TLS certificates or modify your SSL/TLS configuration to support the latest protocols and ciphers.
3. Contact the payment gateway: If you are unable to resolve the issue on your own, contact the payment gateway support team for assistance. They may be able to provide more information about the specific SSL/TLS configuration requirements for their system and help you troubleshoot the issue.
Hope that helps! 🤘