1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

PCI Complience SSLv3 for Plesk Control Panel

Discussion in 'Plesk 9.x for Windows Suggestions and Feedback' started by prussell, Oct 5, 2010.

  1. prussell

    prussell Guest

    0
     
    I recently upgraded from the Plesk 8.1 version on Windows to 9.5. Version 8.1 was running in IIS. The new version of Plesk is running from Apache. I am trying to pass PCI Scan and the last problem I have is a SSLv2 vulnerability. I have already made the adjustments for IIS in the registry, but not for tcp/8443 which is running from apache.

    How do I configure Apache to only use SSLv3.

    Thanks
    Patrick
     
  2. IgorG

    IgorG Forums Analyst Staff Member

    49
    24%
    Joined:
    Oct 27, 2009
    Messages:
    24,572
    Likes Received:
    1,243
    Location:
    Novosibirsk, Russia
  3. prussell

    prussell Guest

    0
     
    Hi IgorG

    Yes, I have read and made the modifications for a Windows Server according to the guide. The problem is that Plesk Panel is now using Apache instead of IIS. Even though I have disabled PCT1 and SSLv2 per the Windows section of the guide, the Plesk Panel & Apache is still using SSLv2. The guide does not cover PCI Complience for Apache on Windows.

    I can't run the resolver described in the Linix/FreeBSD section of the guide. Is there a way to do it manually?

    Thanks
    Patrick
     
  4. IgorG

    IgorG Forums Analyst Staff Member

    49
    24%
    Joined:
    Oct 27, 2009
    Messages:
    24,572
    Likes Received:
    1,243
    Location:
    Novosibirsk, Russia
  5. prussell

    prussell Guest

    0
     
    Yes that would be an option.

    Thanks Igor

    Regards
    Patrick
     
Loading...