error during enable TLSv1.3 in cPanel86

bejbi

bejbi

Well-Known Member
PartnerNOC
Jan 20, 2006
165
31
178
Poland
cPanel Access Level
DataCenter Provider
After update cPanel to v86 whe I try to enable TSLv1.3
I add in Apache Global Configuration:
TLSv1.2 TLSv1.3
(space separated)

But after this - only TLSv1.3 works !
It was checked olso via: SSL Server Test (Powered by Qualys SSL Labs)

It is probably bug in cPanel

I changed to:
All -SSLv3 -TLSv1 -TLSv1.1

and it works. But it is only walkaround
 
cPanelLauren

cPanelLauren

Product Owner II
Staff member
Nov 14, 2017
13,266
1,300
363
Houston
You must specify what you're adding if you're adding more than one in this instance. I can confirm the following works:

+TLSv1.2 +TLSv1.3

My output from SSL Labs when using this indicates the following:

Screenshot at Feb 20 19-33-41.png
 
  • Like
Reactions: martin MHC and ciao70
cPanelLauren

cPanelLauren

Product Owner II
Staff member
Nov 14, 2017
13,266
1,300
363
Houston
ciao70 said:
Hello,

For Apache

WHM’s Global Configuration interface (Home >> WHM >> Service Configuration >> Apache Configuration >> Global Configuration).

+TLSv1.2 +TLSv1.3
Click to expand...
This is correct, thanks @ciao70
 
C

ciao70

Well-Known Member
Nov 3, 2006
149
33
178
I do not know :)

forums.cpanel.net

error during enable TLSv1.3 in cPanel86

After update cPanel to v86 whe I try to enable TSLv1.3 I add in Apache Global Configuration: TLSv1.2 TLSv1.3 (space separated) But after this - only TLSv1.3 works ! It was checked olso via: SSL Server Test (Powered by Qualys SSL Labs) It is probably bug in cPanel I changed to: All -SSLv3...
forums.cpanel.net forums.cpanel.net
 
C

ciao70

Well-Known Member
Nov 3, 2006
149
33
178
cPanelLauren said:
They should not be used any longer, cPanel does not automatically support them either.
Click to expand...

For Enable TLS 1.3 on Cpanel/WHM?

Service Configuration ---->cPanel Web Services Configuration


always

+TLSv1.2 +TLSv1.3 ?

Thanks
 
vlee

vlee

Well-Known Member
Oct 13, 2005
373
26
178
Spokane, Washington
cPanel Access Level
Root Administrator
How about the other services for +TLSv1.2 +TLSv1.3 like the ones below

cPanel Web Disk Configuration
Currently set to SSLv23:!SSLv2:!SSLv3

cPanel Web Services Configuration
Currently set to SSLv23:!SSLv2:!SSLv3

Mailserver Configuration
SSL Minimum Protocol Currently set to TLSv1.2

Exim Configuration Manager ==> Security
Currently set to +no_sslv2 +no_sslv3 +no_tlsv1 +no_tlsv1_1 default

How do you change those ones above to use +TLSv1.2 +TLSv1.3?
 
P

PbG

Well-Known Member
Mar 11, 2003
249
0
166
I would like to know this as well?


vlee said:
How about the other services for +TLSv1.2 +TLSv1.3 like the ones below

cPanel Web Disk Configuration
Currently set to SSLv23:!SSLv2:!SSLv3

cPanel Web Services Configuration
Currently set to SSLv23:!SSLv2:!SSLv3

Mailserver Configuration
SSL Minimum Protocol Currently set to TLSv1.2

Exim Configuration Manager ==> Security
Currently set to +no_sslv2 +no_sslv3 +no_tlsv1 +no_tlsv1_1 default

How do you change those ones above to use +TLSv1.2 +TLSv1.3?
Click to expand...
 
cPanelLauren

cPanelLauren

Product Owner II
Staff member
Nov 14, 2017
13,266
1,300
363
Houston
The OpenSSL package that was released was for EasyApache 86 Release Notes | cPanel & WHM Documentation which covers OpenSSL for Apache related services.

This is not the same package that covers it for the system which includes other services which is at OpenSSL 1.0.2k-fips 26 Jan 2017

I also want to point out that I did notice our documentation was a little unclear on this and I've opened a case to have it clarified.
 
Last edited:
  • Like
Reactions: Alongar and ciao70
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
V Let's encrypt plugin install error (Almalinux 8) Security 3
M ERR_TOO_MANY_REDIRECTS error message on wordpress site after enabling Cloudflare Security 1
P Is cPanel to Blame for Wordpress REST API 403 Errors? Security 9
T csf v3.35 Server filesystem errors + an rdate error during update Security 0
J Cpanel/WHM SSL cert error during install? Security 25
Similar threads
Let's encrypt plugin install error (Almalinux 8)
ERR_TOO_MANY_REDIRECTS error message on wordpress site after enabling Cloudflare
Is cPanel to Blame for Wordpress REST API 403 Errors?
csf v3.35 Server filesystem errors + an rdate error during update
Cpanel/WHM SSL cert error during install?
Top Bottom