Search code examples
phplinuxsslcurlpci-dss

is it possible to POST/GET data to TLSv1.1+ secured site without curl and wget?

I am in this very unfortunate situation:

  • My website is using outdated software (security patches are applied) with OpenSSL 0.9.8o 01 Jun 2010 which doesn't support TLSv1.1/1.2
  • I also have payment gateway which is PCI DSS compliant therefore SSL and early TLS is disabled there

My website used to exchange data with payment gateway but as TLSv1.0 is dropped I can no longer use php's cURL library or even file_get_contents() (or wget/lynx/curl via shell)

Is there any workaround, any option how to connect TLSv1.1+ secured server without using built-in libraries?

I know some classes exists in PHP like phpseclib which is SSH client, great for people who can't use SSH2 module

Does something like that exists for PHP? Is there any way I can connect to my gateway?

So far my best idea is connecting to gateway thru other server (with updated software)

Solution

  • I found another solution.

    On secure server i set up two VirtualHosts - 443 for TLSv1.2 and another for my website only with TLSv1.0 support

    More info here: https://serverfault.com/a/692894/122489

    Thanks for all answers.