Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Disable Weak RC4 Ciphers PCI Compliance Q2 of 2019

Discussion in 'Security' started by BubbaTrading, Jun 5, 2019.

  1. BubbaTrading

    BubbaTrading Member

    Joined:
    Jun 5, 2019
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    United States
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hola, I am at my wits end with attempting to obtain compliance for a new PCI vulnerability flagged here in the second calendar quarter of 2019. Specifically this time around, our Payment Processor is demanding we disable "SSL/TLS use of Weak RC4 (Arcfour) Ciphers.

    However, I have added :!RC4 to every cipher string tweak entry point within WHM known to me:
    • Apache Configuration Config
    • cPanel Web Disk Config
    • cPanel Web Services Config
    • Exim Config
    • FTP Server Config
    • Mailserver Config

    However still the PCI Flag appears for ports 25, 26, 465, and 587 as still making use of RC4.

    Am I missing a cipher configuration location? Thank you.

    - Allison
     
  2. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    6,466
    Likes Received:
    505
    Trophy Points:
    263
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @BubbaTrading

    Can you please open a ticket using the link in my signature, it sounds like you have covered all the bases but a look at the system may be warranted? Once open please reply with the Ticket ID here so that we can update this thread with the resolution once the ticket is resolved.


    Thanks!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. BubbaTrading

    BubbaTrading Member

    Joined:
    Jun 5, 2019
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    United States
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello, thank you for your reply. We were required to disable all ssh into the server to achieve PCI compliance. As such can a support ticket be created to require login to WHM GUI?
     
  4. cPanelLauren

    cPanelLauren Forums Analyst II Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    6,466
    Likes Received:
    505
    Trophy Points:
    263
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice