* Posts by PaulW2020

1 publicly visible post • joined 19 Feb 2015

Sage Pay anti-POODLE upgrade REDUCED security - briefly


SagePay not patched for Poodle

SagePay assure me that their test server is patched for Poodle and soon their live one will be too.

But testing the domain:


At https://www.ssllabs.com/ssltest/

Shows its still unpatched for Poodle. I tried a few other Poodle test sites and same issue.

Does this mean the SSL Labs test ( and all the other sites ) are wrong?

Or is their payment domain https://test.sagepay.com/gateway/service/vspserver-register.vsp and https://live.sagepay.com/gateway/service/vspserver-register.vsp

Not actually patched?

Can anyone shed light on this?