Community Forums
Connect with us on LinkedIn
port 2096 disable SSLv2
  
+ Reply to Thread
Results 1 to 5 of 5
  1. 01-28-2012 01:17 AM #1
    izghitu
    izghitu is offline
    Member
    Join Date
    Aug 2006
    Posts
    19

    Default port 2096 disable SSLv2

    Hi,

    I am failing the PCI compliance scan at Security Metrics because of port 2096:
    Code:
    Description: SSL server accepts SSLv2 protocol Severity: Potential Problem Impact: A remote attacker with the ability to sniff network traffic could decrypt an encrypted session. Resolution For Apache mod_ssl web servers, use the [http://httpd.apache.org/docs/2.0/mod/mo d_ssl.html#sslciphersuite] SSLCipherSuite
.......
    The cpsrvd service is listening on that port, can anyone please tell me how do I disable SSLv2 for that service?

    THanks in advance.
    Reply With Quote Reply With Quote
  2. 01-28-2012 08:31 AM #2
    faisikhan
    faisikhan is offline
    Member faisikhan's Avatar
    Join Date
    Dec 2011
    Location
    Islamabad, Pakistan
    Posts
    58
    cPanel/Enkompass Access Level

    Root Administrator
    Send a message via MSN to faisikhan Send a message via Yahoo to faisikhan Send a message via Skype™ to faisikhan

    Default Re: port 2096 disable SSLv2

    Hi izghitu,

    Did you see that link?
    /http://blog.serverbuddies.com/tag/disable-sslv2-on-cpanel-and-apache-ports/ I hope it will help you to disable SSLv2.
    Regards,

    Faisal Rehman
    Linux Server Administrator |     MyLinkedIn

    Reply With Quote Reply With Quote
  3. 01-29-2012 02:27 PM #3
    cPanelEric
    cPanelEric is offline
    Support Manager cPanelEric's Avatar
    Join Date
    Nov 2007
    Location
    Texas
    Posts
    488
    cPanel/Enkompass Access Level

    Root Administrator
    Send a message via AIM to cPanelEric

    Default Re: port 2096 disable SSLv2

    Howdy,

    Nice workaround.

    Thanks!
    --Eric
    www|twitter|xbox|linkedin
    Reply With Quote Reply With Quote
  4. 01-31-2012 01:25 AM #4
    nibin
    nibin is offline
    Member
    Join Date
    Aug 2010
    Location
    India
    Posts
    238
    cPanel/Enkompass Access Level

    Root Administrator

    Default Re: port 2096 disable SSLv2

    Hello,

    One issue I ntoiced while switching to stunnel is, cpanel access log will show the IP 127.0.0.1 for any cPanel / WHM access. So we can't trace the exact source IP, if we want to do it any time!

    Thank you,
    Nibin.
    http://techsware.in

    https://www.facebook.com/people/Nibi...00001933308055
    Reply With Quote Reply With Quote
  5. 02-03-2012 02:50 PM #5
    cpanelkenneth
    cpanelkenneth is offline
    cPanel Development cpanelkenneth's Avatar
    Join Date
    Apr 2006
    Posts
    3,788
    cPanel/Enkompass Access Level

    Root Administrator

    Default Re: port 2096 disable SSLv2

    To the original poster, you can modify the ciphers used by cpsrvd using the cPanel Web Services Configuration interface in WHM.
    Kenneth
    Product Manager
    cPanel, Inc.
    Reply With Quote Reply With Quote
«   User-level email filters not updated when account name changed | Switched off of a remote mysql server and need to search the server »     
Similar Threads & Tags
Similar threads

  1. Newbie needs to disable SSLv2
    By logicsound in forum cPanel and WHM Discussions
    Replies: 3
    Last Post: 02-23-2011, 08:28 PM
  2. PCI Compliance Issue SSLv2 port 2078
    By kejebe in forum Security
    Replies: 1
    Last Post: 08-02-2010, 08:15 AM
  3. Close port 2096
    By bwor in forum E-mail Discussions
    Replies: 5
    Last Post: 06-28-2010, 01:40 PM
  4. Port 2096
    By jackal in forum cPanel and WHM Discussions
    Replies: 0
    Last Post: 01-21-2004, 01:51 PM
  5. Client Authentication on port 2096 What for?
    By ozzi4648 in forum cPanel and WHM Discussions
    Replies: 1
    Last Post: 12-28-2002, 07:14 PM
Linkedin       Facebook       Twitter       RSS       Flickr       YouTube