search

djacobs / PyAPNs

Python library for interacting with the Apple Push Notification service (APNs)
http://pypi.python.org/pypi/apns/
MIT License
1.22k stars 376 forks source link

Apple removes support for SSL 3.0 on Wednesday, October 29 #95

Closed seppkurt closed 9 years ago

seppkurt commented 9 years ago

Hi, regarding https://developer.apple.com/news/?id=10222014a Apple removes support for SSL 3.0 on Wednesday, October 29 for security reasons. From that day on providers will need to support TLS.

Is PyAPNs doing this or does the change effect it?

Best + thanks Sebastian

jimhorng commented 9 years ago

NO change required, it works without any problem as I've tested in APNS sandbox. PyAPNs use python ssl library and its doc says:

Selects the highest protocol version that both the client and server support. Despite the name, this option can select “TLS” protocols as well as “SSL”.

I also tested that APNS sandbox had closed sslv3 support

$ openssl s_client -connect gateway.sandbox.push.apple.com:2195 -ssl3 -cert xxx.pem 
CONNECTED(00000003)
5095:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:/SourceCache/OpenSSL098/OpenSSL098-52/src/ssl/s3_pkt.c:1125:SSL alert number 40
5095:error:1409E0E5:SSL routines:SSL3_WRITE_BYTES:ssl handshake failure:/SourceCache/OpenSSL098/OpenSSL098-52/src/ssl/s3_pkt.c:546:
seppkurt commented 9 years ago

Thanks a lot for checking!