On attempt to install some Magento extension via Downloader/Magento Connect it shows the following error message: Unknown cipher in list: TLSv1 Cause CURLOPT_SSL_CIPHER_LIST constant is changed to CURLOPT_SSLVERSION with newer curl library. Solution Apply the following correction against downloader/lib/Mage/HTTP/Client/Curl.php: If you have any difficulties with solving this problem or got a similar one, please let us know in comments below, so we can find the solution together.
During Magento upgrade via Magento Connect Manager or from ./mage upgrade-all CLI command there is the following or similar message reported in console: package community/lib_linlibertinefont 2.8.14.17 conflicts with: community/mage_core_adminhtml 1.9.3.10 Cause Most likely cause of this dependency issue is the following: upgrade-all: Failed to delete files: ./pkginfo/Mage_All_Latest.txt Check permissions The actual error message is just masked in long output from ./mage upgrade-all Solution The solution is to locate actual error message and correct it, i.e….
Read the rest
During Magento upgrade via Magento Connect Manager or from ./mage upgrade-all CLI command there is the following or similar message reported in console: Magento upgrade-all: Failed to delete files: ./pkginfo/Mage_All_Latest.txt Check permissions Full error message may look like the following: Cause Most likely, instead of file pkginfo/Mage_All_Latest.txt there is such directory, so Magento can not delete it with rm or unlink call. You can check it by navigating into pkginfo/ folder in your filemanager or…
Read the rest
Problem description The following error reported in Magento Connect manager or during manual invokation of mage command in CLI on upgrades or extension installation: Unknown SSL protocol error in connection to connect20.magentocommerce.com:443 Cause downloader/lib/Mage/HTTP/Client/Curl.php now requires newer SSL protocol support with functions added in PHP5.5 (TLSv1.1 or newer) can not connect to repo server with cURL libs available for PHP on your host. Solution Ask your hosting provider to bring TLSv1.1, TLSv1.2 support in cURL…
Read the rest
We are noticing dynamic increase in robots/crawlers brute-forcing Magento’s /downloader/ locations, trying default admin user with various passwords (mostly dictionary-based) and other popular logins. We seen the bots are trying it continuously (in some cases for several months or years already)