Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

PCI compliance and BEAST

Discussion in 'Security' started by izghitu, Nov 26, 2012.

  1. izghitu

    izghitu Well-Known Member

    Joined:
    Aug 9, 2006
    Messages:
    52
    Likes Received:
    1
    Trophy Points:
    158
    Hi,

    I am trying to pass PCI compliance test on my cpanel/WHM server.

    I was able to fix everything for apache but it is still failing for cpanel ports and courier-imap ports. I am using stunnel for cpanel/whm

    Can someone please tell me how do I fix those?

    For courier-imap I am already using this:
    TLS_CIPHER_LIST="ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH"

    and for stunnel:
    options = NO_SSLv2
    ciphers = ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH

    but it did not help

    Please advise
     
    #1 izghitu, Nov 26, 2012
  2. Infopro

    Infopro cPanel Sr. Product Evangelist Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,764
    Likes Received:
    457
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 Infopro, Nov 27, 2012
  3. izghitu

    izghitu Well-Known Member

    Joined:
    Aug 9, 2006
    Messages:
    52
    Likes Received:
    1
    Trophy Points:
    158
    #3 izghitu, Nov 27, 2012
  4. izghitu

    izghitu Well-Known Member

    Joined:
    Aug 9, 2006
    Messages:
    52
    Likes Received:
    1
    Trophy Points:
    158
    ok, it has been fixed using
    Code:
    RC4-SHA:RC4:HIGH:!MD5:!aNULL:!EDH:!ADH:!AESGCM:!AES:!DES-CBC3-SHA:!CAMELLIA256-SHA:!CAMELLIA128-SHA:!AES256-SHA
    Thanks
     
    #4 izghitu, Nov 27, 2012
(You must log in or sign up to post here.)
Loading...
Similar Threads - compliance BEAST
  1. Brian Lack

    In Progress [CPANEL-26253 ] PCI compliance failure due to unsecured Horde cookies

    Brian Lack, Mar 12, 2019, in forum: Security
    Replies:
    3
    Views:
    327
    cPanelLauren
    Mar 14, 2019
  2. bridgeway04

    PCI Compliance Apache Global Setting

    bridgeway04, Oct 3, 2018, in forum: Security
    Replies:
    2
    Views:
    287
    cPanelLauren
    Oct 5, 2018
  3. WebJIVE

    PCI Compliance Automation

    WebJIVE, Jun 22, 2018, in forum: Security
    Replies:
    6
    Views:
    468
    rpvw
    Jun 22, 2018
  4. GregWilliamBryant

    Trustwave failing PCI compliance SSL/TLS Weak Encryption Algorithms on Port 443

    GregWilliamBryant, May 10, 2018, in forum: Security
    Replies:
    2
    Views:
    900
    rulerofzu
    May 14, 2018
  5. dstana

    PCI Compliance

    dstana, Apr 25, 2018, in forum: Security
    Replies:
    4
    Views:
    421
    cPanelMichael
    Apr 27, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice