Request Error: cURL error 35

If you get an error while trying to update that looks like one of these messages:

Download failed. SSL: certificate subject name ‘*.mycloudproxy.com’ does not match target host name ‘yoast.com’

Download failed. cURL error 51: SSL: no alternative certificate subject name matches target host name ‘yoast.com’

Request error: “cURL error 35: error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version”

Request error: “cURL error 35: Peer reports incompatible or unsupported protocol version.”

Request error: “cURL error 35: SSL connect error

The Problem

To receive update notifications for premium plugins, your host must meet our plugin requirements. The errors above indicate that the server you’re hosted on uses an old version of cURL, TLS and / or OpenSSL, the library used to connect to other servers. When you send an update request to our servers, we do that over a secure connection. The reason behind that is that the request contains information about your site as well as your license key.

All our connections run through Sucuri’s Website Application Firewall, which keeps us safe from so called DDOS attacks, unfortunately something we’ve had to bear. To be able to do that, we use a system called Server Name Indication (SNI). Every browser after IE6 supports this, and every major CURL version released after March 2008 supports this. Unfortunately, it seems your server is using software older than that.

The Solution

We don’t like telling people to contact their hosts. Unfortunately, there are two solutions for us here: fix it for everyone by using an insecure connection, thereby creating security issues, or asking you to contact your host. We’ve chosen the latter.

 In the meantime, please manually update your plugin using the steps found here: How can I manually update my premium plugin?

What to do if your host doesn’t want to fix it?

As the software we’re asking your host to use is over 10 years old and several major security problems have been found in these libraries through these years, you should run, not walk, away from your host if they refuse to do this.

Which host does Yoast recommend?

We have vetted all the hosts that we’ve shown here, to make sure Yoast SEO runs without issue on their sites. We checked all the common issues we find with Yoast SEO and other plugins and made sure they were prevented.

Was this article helpful? ·