Author Topic: USA heads-up: NWS sites to enforce TLS1.2+ for access 27-Jul-2020  (Read 330 times)

saratogaWX

  • Strong Breeze
  • ***
  • Posts: 144
  • Weather website programming enthusiast
    • Saratoga-Weather.org
  • Station Details: Davis VP1 +, iMAC 21, OSX 10.6.8
This came in this morning via https://www.weather.gov/media/notification/SCN20-60_NWS_Website_Enforce_TLS.pdf

Quote
Subject: Enforce TLS 1.2 or Higher on Several NWS Websites
Effective date: July 27, 2020

Effective on or about July 27, 2020, beginning at 1400 Coordinated Universal Time (UTC), the National Centers for Environmental Prediction (NCEP) Central Operations (NCO) will enforce Transport Layer Security (TLS) 1.2 or higher connections to the websites listed below.
The following websites will be affected:
---
weather.gov*
airquality.weather.gov
alerts.weather.gov
api.weather.gov
aviationweather.gov*
digital.weather.gov
forecast.weather.gov
graphical.weather.gov
marine.weather.gov
mobile.weather.gov
preview.weather.gov
preview-api.weather.gov
radar.weather.gov
water.weather.gov
f1.weather.gov
w1.weather.gov
w2.weather.gov
---
www.nws.noaa.gov
nowcoast.noaa.gov
new.nowcoast.noaa.gov
ssd.wrh.noaa.gov
www.wrh.noaa.gov
wwwx.wrh.noaa.gov
---
idpgis.ncep.noaa.gov
---
tsunami.gov*

---
Where “*” also includes “www.”
Any browsers or services that do not support TLS 1.2 or greater and access these sites will need to begin support of TLS 1.2 or greater in order to avoid service interruption.

The Saratoga PHP scripts that use NWS data all use PHP's built-in cURL or stream access to obtain data from NWS sites,
so your website's PHP/cURL version should be up-to-date to have the scripts continue to operate.

To make sure your website is TLS1.2 capable, create a page with
Code: [Select]
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<title>PHP Info</title>
</head>
<body>
<?php phpinfo(); ?>
</body>
</html>
on it, display the page in your browser and look for
Quote
Registered Stream Socket Transports   tcp, udp, unix, udg, ssl, sslv3, tls, tlsv1.0, tlsv1.1, tlsv1.2

If you don't see the tlsv1.2 upgrade your PHP to V7+ or contact your webhoster to have PHP updated.
Ken True/Saratoga, CA, USA main site: saratoga-weather.org
Davis Vantage Pro Plus - FARS, Boltek-PCI/NexStorm, GRLevel3, WD, WL, VWS, Cumulus, Meteohub, WeatherSnoop, WeatherCat
Free weather PHP scripts/website templates - update notifications on Twitter saratogaWXPHP

Blicj11

  • Storm
  • *****
  • Posts: 3498
    • EW3808
    • KUTHEBER6
    • Timber Lakes Utah
  • Station Details: Davis Vantage Pro2 Plus | WeatherLinkIP Data Logger | iMac (2019), 3.6 GHz Intel Core i9, 40 GB RAM, macOS 10.15.7 | Sharx SCNC2900 Webcam | WeatherCat 3 | Supportive Wife
Re: USA heads-up: NWS sites to enforce TLS1.2+ for access 27-Jul-2020
« Reply #1 on: July 01, 2020, 03:59:13 am »
Thanks for the update Ken!
Blick