JamesOakley
- Total activity 51
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 11
Comments
Recent activity by JamesOakley-
]Why is it cPanel's responsibility to do this for any service other than cPanel/WHM itself? There are numerous instructions here on how to disable SSLv3 across the board. Because most of the inst...
-
]All, I've been repeatedly asked to post something about this to my site, so I did: [url=http://thecpaneladmin.com/disabling-support-for-sslv3-on-a-cpanel-server/]de-POODLE-ing: How to Disable S...
-
Picking up on what several people have said in this thread (and this may help @rohroh1974): You shouldn't be changing the SSLCiphers at all. SSLProtocol is the only thing that needs changing (well,...
-
That would remove TLS1.0 and TLS1.1 as well. Just add one line to the pre_main_global.conf file: SSLProtocol ALL -SSLv2 -SSLv3 and restart Apache. That protects Apache, but not Exim, Dovecot, Pu...
-
But TLS_FALLBACK_SCSV only prevents forced downgrades, and I'm pretty sure that's not the only vector that makes SSLv3 problematic.
-
I think OpenSSL 1.0.1j at best mitigates it, but perhaps I've misunderstood.
-
]To fix this in WHM go to Service Configuration > cPanel Web Services Configuration and change the field "TLS/SSL Cipher List" from "ALL:!ADH:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP" to "ALL:!ADH:+HIGH:+MED...
-
]We are talking about apache and port 443. What about 2083 and 2087 2093 ports? Can somebody confirm that they are also affected? Yes they are - and any SSL used by FTP, and Exim (465 and 587). E...
-
I've just started to get this same problem. Before opening a new forum thread, I searched, and found this. I see it's 3 months since this thread was last updated - has there been any progress on this?
-
OK: Things I really like: Assigning a user to a database now lets the user assign specific permissions in the same screen. I like the fact that you can get to "assign user to database" from either...