Hi folks, Our cPanel servers are failing PCI compliance due to the TLS CRIME vulnerability. We've got away with it for a bit and I've been watching to see if anyone mentions it on here. So far nothing. We can't wait for Apacha 2.4.x as I imagine that is a way of. Apache 2.2.24 gives a workaround that can be implemented but I can't see any sign of 2.2.24 being implemented. I went to try and post in the Feature Requests forum but the post button disappears when I go over there. So, when are we likely to see Apache 2.2.24 and does anyone have any other workarounds for TLS CRIME. So far the only other suggestion I have seen is to recompile openssl without zlib support which I'd rather not get into... All the best, Colin.