SSL still broke on 8.4.0RC2

Permalink
Just started getting this error on 8.3.2. Did something change?

SSL works on HTTPS, but the RSS reader still gives me:

Unable to enable crypto on TCP connection cryptocurrencynews.com: make sure the "sslcafile" or "sslcapath" option are properly set for the environment.


FYI: This is the feed linkhttps://cryptocurrencynews.com/feed/...

This is a repost of the same problem (on 8.3.2) here ->https://www.concrete5.org/community/forums/usage/old-rssssl-error-ap...

# concrete5 Version
Core Version - 8.4.0RC2
Version Installed - 8.4.0RC2
Database Version - 20180403143200
# concrete5 Overrides
None
# Server Software
Apache/2.2.22 (Debian) mod_ssl/2.2.22 OpenSSL/1.0.1t
# PHP Version
5.5.38-1~dotdeb+7.1
# PHP Extensions
apache2handler, bcmath, bz2, calendar, Core, ctype, date, dba, dom, ereg, exif, fileinfo, filter, ftp, gd, geoip, gettext, hash, iconv, imagick, json, libxml, mbstring, mcrypt, mhash, mysql, mysqli, openssl, pcre, PDO, pdo_mysql, Phar, posix, Reflection, session, shmop, SimpleXML, soap, sockets, SPL, standard, sysvmsg, sysvsem, sysvshm, tokenizer, wddx, xml, xmlreader, xmlwriter, Zend OPcache, zip, zlib

ntisithoj
 
anebi replied on at Permalink Reply
Hi,

I don't know if you've solved the problem, but you can edit

"./concrete/vendor/zendframework/zend-http/src/Client/Adapter/Socket.php" file and find:

/**
     * Parameters array
     *
     * @var array
     */
    protected $config = array(
        'persistent'            => false,
        'ssltransport'          => 'ssl',
        'sslcert'               => null,
        'sslpassphrase'         => null,
        'sslverifypeer'         => true,
        'sslcafile'             => null,
        'sslcapath'             => null,
        'sslallowselfsigned'    => false,
        'sslusecontext'         => false


note: there is a config called 'sslverifypeer', change that to false
chawilaclef replied on at Permalink Reply
chawilaclef
I use
https://chrome.google.com/webstore/detail/ssl-checker/nbanpljakngdnd...
plugin, which gives me information when I call api coming from https. Don't know if it would solve but might help.