A vulnerability in the design of SSLv3 was uncovered earlier this week. This vulnerability means that attackers could exploit this weakness and try to decrypt encrypted connections. SSLv3 is 18 years old and the technology behind it is obsolete and insecure.

Having security in mind, we have limited SSLv3 connections within the CH APIs (domains and email).

The vast majority of our resellers already use TLS and if you are still using SSLv3, our recommendation is that you upgrade to TLS as soon as possible to avoid any type of service disruption.

If you need to test your TLS connection, you can use our test environment as it no longer accepts SSLv3 connections.

You won’t be affected if:;

  • You are using the TLS protocol or if your connection is TLS enabled;
  • You currently use Storefront or process orders through the new control panel or the RWI.

We only use TLS to connect to other systems so this vulnerability has not affected us.