Lots of articles online talk about how to get Plesk to pass PCI compliance, especially the TCP port 8443 which Plesk listens on.
From Plesk 8.x (which most of the articles are written for) to Plesk 9.x Parallels changed to another webserver (away from apache), so, adding the /usr/local/psa/admin/conf/httpsd.custom.include file and restarting psa does NOT help.
The main problem was that PCI was complaining about:
‘port 8443 pcsync-https with medium strength SSL ciphers’
In Plesk 9 for Linux to update this you will need to edit this file: /etc/sw-cp-server/applications.d/plesk.conf
And add the following ssl.cipher-list line between the inlcude_shell and index-file.names statements:
ssl.cipher-list = “TLSv1+HIGH !SSLv2 RC4+MEDIUM !aNULL !eNULL !3DES @STRENGTH”
It will probably work anywhere in the file, however, that’s where I put it.
URLs:
0 responses so far ↓
There are no comments yet...
Leave a Comment