is it possible to POST/GET data to TLSv1.1+ secured site without curl and wget?

I am in this very unfortunate situation:

  • My website is using outdated software (security patched are applied) with OpenSSL 0.9.8o 01 Jun 2010 which doesn’t support TLSv1.1/1.2
  • I also have payment gateway which is PCI DSS compliant therefore SSL and early TLS is disabled there

My website used to exchange data with this payment gateway but as TLSv1.0 is dropped I can no longer use php’s cURL library or even file_get_contents()

Is there any workaround, any option how to connect TLSv1.1+ secured server without using built-in libraries?

I know some classes exists in PHP like phpseclib which is SSH client, great for people who can’t use SSH2 module

Does something like that exists for PHP? Is there any way I can connect to my gateway?

So far my best idea is connecting to gateway thru other server (with updated software)


Source: php

Leave a Reply