Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

PCI compliance and BEAST

Discussion in 'Security' started by izghitu, Nov 26, 2012.

  1. izghitu

    izghitu Well-Known Member

    Joined:
    Aug 9, 2006
    Messages:
    52
    Likes Received:
    1
    Trophy Points:
    158
    Hi,

    I am trying to pass PCI compliance test on my cpanel/WHM server.

    I was able to fix everything for apache but it is still failing for cpanel ports and courier-imap ports. I am using stunnel for cpanel/whm

    Can someone please tell me how do I fix those?

    For courier-imap I am already using this:
    TLS_CIPHER_LIST="ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH"

    and for stunnel:
    options = NO_SSLv2
    ciphers = ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH

    but it did not help

    Please advise
     
    #1 izghitu, Nov 26, 2012
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,067
    Likes Received:
    348
    Trophy Points:
    433
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    #2 Infopro, Nov 27, 2012
  3. izghitu

    izghitu Well-Known Member

    Joined:
    Aug 9, 2006
    Messages:
    52
    Likes Received:
    1
    Trophy Points:
    158
    #3 izghitu, Nov 27, 2012
  4. izghitu

    izghitu Well-Known Member

    Joined:
    Aug 9, 2006
    Messages:
    52
    Likes Received:
    1
    Trophy Points:
    158
    ok, it has been fixed using
    Code:
    RC4-SHA:RC4:HIGH:!MD5:!aNULL:!EDH:!ADH:!AESGCM:!AES:!DES-CBC3-SHA:!CAMELLIA256-SHA:!CAMELLIA128-SHA:!AES256-SHA
    Thanks
     
    #4 izghitu, Nov 27, 2012
(You must log in or sign up to post here.)
Loading...
Similar Threads - compliance BEAST
  1. ehask71

    PCI compliance is getting ridiculous

    ehask71, Feb 22, 2018, in forum: Security
    Replies:
    7
    Views:
    292
    sparek-3
    Apr 11, 2018
  2. ehask71

    SOLVED PCI compliance report issues

    ehask71, Dec 30, 2017, in forum: Security
    Replies:
    2
    Views:
    630
    cPanelMichael
    Jan 18, 2018
  3. itmonitor

    SOLVED HIPAA Compliance?

    itmonitor, Dec 21, 2017, in forum: Security
    Replies:
    4
    Views:
    228
    itmonitor
    Dec 26, 2017
  4. ehask71

    SOLVED Proftp & TLS 1.0 PCI Compliance

    ehask71, Dec 19, 2017, in forum: Security
    Replies:
    8
    Views:
    337
    cPanelMichael
    Feb 22, 2018
  5. AbiGoliath

    TLSv1.0 - block for PCI compliance?

    AbiGoliath, Aug 4, 2017, in forum: Security
    Replies:
    1
    Views:
    442
    cPanelMichael
    Aug 4, 2017

Share This Page