Find the ServerTokens statement and set it to ProductOnly and the FileEtag statement should be set to None and click Save. Do the same for the ServerSignature statement. First log into your CPanel WHM panel.Įdit the Apache configuration: Click from the left navigation menu Main > Service Configuration > Apache Configuration > Global Configuration and enter the following into the SSLCipherSuite sectionĪLL:!ADH:RC4+RSA:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP Search for the TraceEnable option and set it to Off. To become fully compliant, the SSLV2 and other weak ciphers will need to be disabled. In order to become PCI compliant under CPanel, you will need to change the way CPanel handles its encryption over various protocols. PCI compliance scans commonly fail due to weak SSL ciphers and older protocols. To remain compliant with your credit card processing company, you will need to become PCI compliant.
Hackers are continually searching for new ways to exploit your servers and obtain access to your sensitive files and any financial data you may be storing on your ecommerce server. I tried to reinstall stunnel4 package without success.PCI compliance is a constantly moving target because security threats are not static. I saw that final message "You should check that you have specified the pid= in you configuration file" is being generated to service manager script in init.d, so it is not really part of the error's description. You should check that you have specified the pid= in you configuration file
0 kommentar(er)
