CentOS

Hi, We've been asked to look at several vulnerabilities that are coming up in a PCI Compliance scan and needed some advice as to a couple of warnings related to openssh, the supposed solution being to upgrade openssh. Now I usually take these reports with a grain of salt as I realise that it's prone...

Thanks for your help. I got it resolved after upgrading Plesk which was overriding the settings I had initially set in place. It was indeed a case of tracking down the vhosts and ensuring each had the appropriate settings

Forgive my ignorance, as mentioned this isn't my forte. Is this what you're referring to: /usr/sbin/httpd -S VirtualHost configuration: XX.XX.XXX.XXX:7080 is a NameVirtualHost default server mydomain.com (/var/www/vhosts/mydomain.com/conf/14485391080.35778000_httpd_ip_default.include:133) port 7080 ...

We're hosting just a single domain but I think you may be referring to mail services, plesk etc, right?

Hi, I've run the yum update and I can see that now we're running Centos 6.7. I've run the scan at SSLlabs but there's been no change. I'm not sure I understand why TLS1.0 is not being disabled. We have the following set in /etc/httpd/conf.d/ssl.conf and /etc/httpd/conf/httpd.conf: SSLProtocol -ALL +...

Thanks for the reply. Will running the yum update resolve the issue I'm having with the SSL protocols and ciphers? Will that overwrite settings/ directives we currently have in place?

Hi, I'm really hoping someone can help. We're running Centos 6.5(final)/Apache 2.2.15 and an ssl version check returns v1.01.1e fips. The basic issue is that we need to harden our security settings however we're failing to get an A rating at SSL labs, only achieving a B rating, primarily it seems du...