As we have previously communicated to you, PayPal is upgrading the certificate for www.paypal.com to SHA-256. This endpoint is also used by merchants using the Instant Payment Notification (IPN) product.
This upgrade is scheduled for 9/30/2015; however, we may need to change this date on short notice to you to align to the industry security standard.
You?re receiving this notification because you?ve been identified as a merchant who has used IPN endpoints within the past year. If you have not made the necessary changes, we urge you to do so right away to avoid a disruption of your service!
Are there any changes required on the vBulletin side to handle this certificate update?
I'm also wondering about the same thing. Also, I still have sites on vB 3.8, so I'm wondering which versions of vBulletin the new upgrades are going to work with.
The vBulletin implementation relies on curl to handle any SSL stuff, assuming you have curl with SSL and it supports that strong of a cert I don't think it is going to be a problem.s
If I understood well reading their announcement (but English is not my best), it effects only Website Payments PRO and not Website Payments. The difference is that with website payments PRO you must have your own merchant account and payments are done in your own site. In PRO there is no redirection to PayPal that's why they want the access to their API to be SHA-256.