R
Robert Coshland
Guest
I have seen a handful of posts regarding PCI Compliance on Plesk with PHP 5.2.8. Here is my current PCI failure:
I have PHP 5.2.8 installed and I am running Plesk 9.0.1.
I changed "expose_php = Off" in /etc/php.ini but it doesn't seem to make a difference to the PCI scan.
This variable was not present in /usr/local/psa/admin/conf/php.ini
Should I add it there also?
Any ideas on how to fix this?
Code:
TCP 8443 pcsync-https 8 Synopsis : The remote web server uses a version of PHP that is affected by multiple flaws. Description : According to its banner, the version of PHP installed on the remote host is older than 5.2.7.
TCP 8880 cddbp-alt 8 Synopsis : The remote web server uses a version of PHP that is affected by multiple flaws. Description : According to its banner, the version of PHP installed on the remote host is older than 5.2.7.
TCP 465 urd 4 Synopsis : The remote service encrypts traffic using a protocol with known weaknesses. Description : The remote service accepts connections encrypted using SSL 2.0, which reportedly suffers from several cryptographic flaws and has been deprecated for several years.
I have PHP 5.2.8 installed and I am running Plesk 9.0.1.
I changed "expose_php = Off" in /etc/php.ini but it doesn't seem to make a difference to the PCI scan.
This variable was not present in /usr/local/psa/admin/conf/php.ini
Should I add it there also?
Any ideas on how to fix this?