SSLv3 Vulnerability: Difference between revisions

Revision as of 11:56, 24 November 2014

Most attacks against SSL modify data as it travels between the client and the server, in order to target weaknesses in specific ciphers. For example, the POODLE attack (CVE-2014-3566) targets weaknesses in the SSLv3 protocol.

Starting in WHM/cPanel 11.46, there is a separate SSL cypher setting for all services managed by your cPanel server. The SSLv2 and SSLv3 cyphers are disabled by default in 11.46.

If your server has not updated to cPanel 11.46, we recommend performing any needed updates and then updating cPanel to the latest version.

Additional information can be found at the following link: https://documentation.cpanel.net/display/CKB/How+to+Adjust+Cipher+Protocols

Revision as of 11:55, 24 November 2014 view source Docs admin (talk \| contribs) Bureaucrats, Administrators 2,525 edits No edit summary ← Older edit		Revision as of 11:56, 24 November 2014 view source Docs admin (talk \| contribs) Bureaucrats, Administrators 2,525 edits No edit summary Newer edit →
Line 2:		Line 2:


	Starting in WHM/cPanel 11.46, there is a separate SSL cypher ~~protocol~~ setting for all services managed by your cPanel server. The SSLv2 and SSLv3 cyphers are disabled by default in 11.46.		Starting in WHM/cPanel 11.46, there is a separate SSL cypher setting for all services managed by your cPanel server. The SSLv2 and SSLv3 cyphers are disabled by default in 11.46.

SSLv3 Vulnerability: Difference between revisions

Revision as of 11:56, 24 November 2014

Navigation menu

Search