1. A

    Altering default Cipher Suite to allow older browsers in

    Greetings! I recently moved my website to a new server, going from an older version of WHM/cPanel to the current version. I've discovered that the Apache Cipher Suite is much stricter than on the old server. On the site has gone from an F rating to an A rating. So, basically...
  2. G

    None of the authentication methods supported error

    Hi there :) i'm having trouble last two days. For all other domains that i have, outlook is working perfect, connected over SSL 993/465 and everything is working. Problem started 2 days ago when i migrated one big client to my server. First of all after migration all outlooks stopped on their...
  3. C

    SOLVED Added Incorrect ciphers in Web Services Configuration issue

    Hi Folks I've messed up. Entered an incorrect string into the Web Services Configuration under ciphers and now the cPanel will not connect saying invalid connection. How do I get into the cipher section of the Web Services Configuration using SSH and command line please? This is the silliest...
  4. M

    Exim Configuration Issue

    Hello, After hours of battling to find a correct exim cypher configuration, users were finally able to connect through outlook, but it seems that i always have an issue with outlook 2016. Can someone please let me know of their valid configuration for that? Thank you
  5. L

    This site can't provide a secure connection error

    Hi guys, I have updated my SSLCipherSuite and SSLProtocol. Now My WHM is blocked, It shows a message "This site can't provide a secure connection". Can anyone tell me how I restore my default SSLProtocol & SSLCipherSuite by ssh? I still have root Access by ssh. Thanks in Advance.
  6. C

    Unable to Enable only TLS1.0, 1.1 and 1.2 on apache

    Hi, I am running v68.0.29 and recently updated our server settings to only accept TLSv1.2, however we still need to support TLSv1.0 for some older clients. I have tried changing the SSLProtocols to many things via the whm apache configuration. -all +TLSv1.0 +TLSv1.1 +TLSv1.2 TLSv1.0 +TLSv1.2...
  7. B

    Sweet32 Birthday Attacks on 64-bit Block Ciphers in TLS and OpenVPN (DES-CBC3)

    I use Web Site Security Audit by Beyond and have been running a 99%+ secure server. All of a sudden, I have dropped due to SSL issues and something to do with Sweet32. I have no idea how this has happened or how to correct it - can someone please point me in the right direction? Here are the...
  8. vlee

    A very useful SSL Ciphers Guide

    I stumbled across this website called This website has very useful information I want to share here to those who maybe interested it. However, there are serious considerations around the use of “CBC” ciphers as documented in NIST 800-52, in...
  9. D

    Enable TLS 1.2 on cPanel

    I would like to know if it's possible to enable tsl 1.2 support on my cpanel server and if yes where can I go to find information on that as I've been searching and can't find a direct up to date answer. I currently have a cloud vps with CENTOS 6.9 x86_64 kvm WHM 62.0 (build 20) Easy...
  10. J

    SSL Cipher Question

    Hi, How can I add the following cipher to CentOS 7 with cPanel: 3des-cbc,arcfour,cast128-cbc,twofish-cbc,blowfish-cbc,twofish128-cbc,aes128-cbc,aes256-cbc server,aes256-ctr,aes128-ctr Thank you!
  11. grayloon

    SOLVED Pure-FTPd Cipher Settings

    Now, I'm trying to figure out how to disable DES and 3DES for Pure-FTPd. I changed my TLS Cipher Suite to: When I test my server with SSLyze, I still see this weak cipher listed: #sslyze --starttls=ftp --regular
  12. R

    PCI: Weak Supported Ssl Ciphers Suites on 465, 993, 995, 2083, 2087, 2096

    On ports 465, 993, 995, 2083, 2087, 2096 I have SSLv3 and TLSv1 setup. During PCI scanning I now get the message: Weak Supported Ssl Ciphers Suites on these ports. How can I manually change these ports to use a strong enough cipher to pass PCI scanning?
  13. D

    port 2083 , 2087 , 2096 and 2078 - weak ciphers

    Hi all I have been bothered with this for quite a few weeks now , cant seem to figure out how to get rid of the security scan warnings on those ports. They keep telling me : "Weak Supported Ssl Ciphers Suites" I have adjusted my httpd.conf , however i feel that only effects the main web...