Hello,
My PCI compliance scanner recently changed their criteria to make the SSL BEAST vulnerability a failing criteria for PCI-DSS compliance. I've configured Apache to not be vulnerable with a combination of:
SSL Labs says my sever is no longer vulnerable. However, when I test 2087 using beast.pl, it is reported as vulnerable to BEAST. How can I configure cPanel/WHM to not be vulnerable and pass the PCI scan?
Thank you!
My PCI compliance scanner recently changed their criteria to make the SSL BEAST vulnerability a failing criteria for PCI-DSS compliance. I've configured Apache to not be vulnerable with a combination of:
Code:
SSLCipherSuite ECDHE-RSA-AES256-SHA384:AES256-SHA256:AES256-SHA256:RC4:HIGH:!MD5:!SSLv2:!ADH:!aNULL:!eNULL:!NULL:!DH:!ADH:!EDH:!AESGCM
SSLProtocol ALL -SSLv2
SSLHonorCipherOrder On
Thank you!