This Season
Tailgating
Tech Know
New Year, New You
Tax Time
 

How to disable SSL v2 for PCI Compliance

Many people need to disable SSLv2 for PCI compliance, but are not sure how to do so.

Related Searches:
    Difficulty:
    Moderately Easy

    Instructions

      • 1

        First thing, test it out to make sure its enabled.
        You can use the following openSSL command:
        openssl s_client -host YOUR_IP -port 443 -verify -debug -ssl2

      • 2

        You should see an output similar to this if its disabled:
        verify depth is 0
        CONNECTED(00000003)
        4738:error:1407F0E5:SSL routines:SSL2_WRITE:ssl handshake failure:s2_pkt.c:429:
        or
        verify depth is 0
        CONNECTED(00000003)
        write:errno=104

      • 3

        If you get back a full response that includes a parsed version of your certificate, then its enabled. Dont fret, its pretty easy to disable, by just putting in a few lines into one (possibly two) files.

      • 4

        Add these lines to /etc/httpd/conf.d/ssl.conf file
        SSLProtocol all -SSLv2
        SSLCipherSuite ALL:!ADH:!NULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:-LOW:+SSLv3:+TLSv1:-SSLv2:+EXP:+eNULL

      • 5

        Restart Apache
        service httpd restart

      • 6

        If you are running Plesk and want to disable SSLv2.0 for your Plesk HTTPS on port 8443, you can do the same thing by inserting the lines into /usr/local/psa/admin/conf/httpsd.custom.include and then restarting Plesk service
        service psa stop
        service psa start all

    Related Searches

    Read Next:

    Comments

    You May Also Like

    • How to Disable Weak Ciphers in IIS 6

      Microsoft's Internet Information Services 6, or IIS 6, Web server is included with professional and server editions of Windows XP and 2003....

    • The Requirements for PCI Compliance

      Payment Card Industry Data Security Standards (PCI-DSS, or PCI for short) is a set of compliance regulations adopted by major financial institutions...

    • How to Disable SSL V2

      "Secure Socket Layer" (SSL) 2.0 is an out-of-date version of SSL that is still included---as of August 2010---with Internet Explorer as a...

    • How to Disable Weak SSL Ciphers

      Microsoft Internet Information Server, or IIS, uses a secure HTTP connection for remote access to the server. When a secure connection is...

    • How to Secure an FTP in Ubuntu

      A File Transfer Protocol (FTP) connection allows a user to download online content through a text-based interface, as opposed to a Web...

    • How to Enable SSL in Apache 2

      The Apache Project has produced one of the most popular Web server platforms available in its Apache2 server, and the fact that...

    • How to Disable SSL

      On the Web, Secure Sockets Layer (SSL) is used to encrypt communication. This feature is used on websites that require a user...

    • How to Disable the SSL V.2 IIS

      Short for Internet Information Services, IIS allows computers running the Microsoft Windows operating system to act as Web servers. The software includes...

    • PCI DSS Compliance Requirements

      PCI DSS Compliance Requirements. Companies that either store, process or transmit credit card data are required by the major card brands (VISA,...

    Follow eHow

    Related Ads

    eHow Essentials
    More Photos
    15 Home Repairs for $15