Community Forums
Connect with us on LinkedIn
Check Apache weak SSL/TLS Ciphers (SSLCipherSuite)
  
+ Reply to Thread
Results 1 to 3 of 3
  1. 08-18-2009 09:39 AM #1
    crazyaboutlinux
    crazyaboutlinux is offline
    Member
    Join Date
    Nov 2007
    Posts
    865

    Arrow Check Apache weak SSL/TLS Ciphers (SSLCipherSuite)

    we have installed csf firewall AND i have seen warning for Check Apache weak SSL/TLS Ciphers (SSLCipherSuite)
    Cipher list []. Due to weaknesses in the SSLv2 cipher you should disable SSLv2 in WHM > Apache Configuration > Global Configuration > SSLCipherSuite > Add -SSLv2 to SSLCipherSuite and/or remove +SSLv2. Do not forget to Save AND then Rebuild Configuration and Restart Apache, otherwise the changes will not take effect in httpd.conf
    Should we disable this option as mention above

    we are using
    cPanel 11.24.5-R37946
    WHM 11.24.2 - X 3.9
    CENTOS 5.3 i686 standard
    Reply With Quote Reply With Quote
  2. 08-18-2009 10:11 AM #2
    cPanelDavidG
    cPanelDavidG is offline
    Technical Product Specialist cPanelDavidG's Avatar
    Join Date
    Nov 2006
    Location
    Houston, TX
    Posts
    11,189
    cPanel/Enkompass Access Level

    Root Administrator

    Default

    Quote Originally Posted by nileshparmar View Post
    we have installed csf firewall AND i have seen warning for Check Apache weak SSL/TLS Ciphers (SSLCipherSuite)


    Should we disable this option as mention above

    we are using
    cPanel 11.24.5-R37946
    WHM 11.24.2 - X 3.9
    CENTOS 5.3 i686 standard
    Nowadays, it's generally considered good practice to disable SSLv2 Cipher support and just rely on SSLv3.
    Reply With Quote Reply With Quote
  3. 08-19-2009 03:02 AM #3
    InstaCarma_Tech
    InstaCarma_Tech is offline
    Member
    Join Date
    Apr 2009
    Posts
    230
    Send a message via AIM to InstaCarma_Tech

    Default

    Disabling SSLv2 and other weak encryption methods is a great idea. More importantly, it is mandatory if you desire to get PCI Compliant in future.
    InstaCarma
    Outsourced Web Hosting Technical Support and Server Management
    To visit out Blog , click here
    Reply With Quote Reply With Quote
«   What is the max amount of RAM a cPanel VPS licence can have on the VPS? | Letting users access their own DNS »     
Similar Threads & Tags
Similar threads

  1. Filed with Developers [Case 48781] cPanel => TLS/SSL Manager => Create Self-Signed SSL limited St
    By inetbizo in forum Feature Requests for cPanel/WHM
    Replies: 1
    Last Post: 05-18-2011, 12:58 PM
  2. No "Setup a SSL Certificate to Work with your Site" Button in SSL/TLS Manager
    By beretta627 in forum cPanel and WHM Discussions
    Replies: 8
    Last Post: 02-18-2010, 09:11 PM
  3. PCI: Weak Supported Ssl Ciphers Suites on 465, 993, 995, 2083, 2087, 2096
    By rpertiet in forum cPanel and WHM Discussions
    Replies: 6
    Last Post: 10-22-2008, 02:03 PM
  4. port 2083 , 2087 , 2096 and 2078 - weak ciphers
    By decodeit in forum cPanel and WHM Discussions
    Replies: 0
    Last Post: 09-08-2008, 03:48 PM
Linkedin       Facebook       Twitter       RSS       Flickr       YouTube