pci compliance

A Centos/Plesk server of ours failed a PCI compliance test. The vulnerability cites a Linux 4.4 kernel, yet I'm running 3.1. Server Details: CentOS Linux release 7.8.2003 (Core) 18.0.29.3 Plesk Obsidian 18.0 CentOS Linux release 7.8.2003 (Core) Derived from Red Hat Enterprise Linux 7.8...

First, things first. To understand the complications of a failure by the ciphersuites do i update the web-server by the following commands for Plesk Onyx. Assuming that we use a SSH terminal. And we have to check up the web-server at all to show what kind of ciphersuite are used at the...

I have a 1and1 dedicated server that use to serve my own website. I'm trying to make my site compliant to all the new security rules imposed by PayPal. I'm no expert here so help is needed. here is my site test results: www.bagtoss.com (74.208.73.57) Currently I get an A grade but I...

Hi, When enable PCI Compilance plesk sbin pci_compliance_resolver --enable Dr. web does not work, it´s possible solve this bug? regards!

Hi there, I'm new to this and am trying to ensure our server is PCI compliant. One element we're not passing is on port 8443 "Block cipher algorithms with block size of 64 bits (like DES and 3DES) birthday attack known as Sweet32". So, I'd like to change the cipher suite we use. I found this...

Hi, I have followed PCI doc http://docs.plesk.com/en-US/12.5/advanced-administration-guide-linux/pci-dss-compliance/tune-plesk-to-meet-pci-dss-on-linux.65871/ for passing pci compliance. Meanwhile while doing online scan it is showing "FTP server allow plain text authentication". Please...

I've been having a PCI Compliance issue from Trustwave for one of the sites hosted on our Plesk 11.1 servers that I can't seem to figure out. They are reporting an expired SSL on port 7081. The site has a new SSL for the domain installed on it through Plesk but they are picking up an expired SSL...