Plesk/Qmail PCI DSS issue

RichardM · Unread post by **RichardM** » Mon Dec 01, 2008 10:58 am

I have run a scanner on my server to test for PCI DSS compliance and I have got rid of all the issues - except one!

The issue is Qmail on port 465 accepting SSLv2 and weak ciphers.

I notice that ASL takes care of Plesk admin doing this in /usr/local/psa/admin/conf/httpsd.asl.include:

SSLCipherSuite ALL:!ADH:!LOW:!SSLv2:!EXP:+HIGH:+MEDIUM
SSLProtocol all -SSLv2

Is there a way to fix Qmail likewise? (Hopefully a way that won't risk breaking the Plesk/Qmail setup!)

Unread post by **scott** » Mon Dec 01, 2008 8:24 pm

No, but thats a great idea. I'll add it to the feature request list!