Facebook
TwitterI have a customer with a Windows Server 2008 R2 Standard OS, Plesk 10.4 environment.
When trying to scan for PCI compliance, they are flagged for port 8443 as using SSLv2.
At first, I figured this would be a simple fix of the registry, and did the following in SCHANNEL:
SSL2.0 - Added a DWORD "Enabled" and set its value to 0.
After a scheduled reboot, the problem is persisting.
It seems that Plesk is getting its SSL configuration through something other than IIS or Windows registry (at least, not the SCHANNEL).
Again, it is only flagging for port 8443, and not 443 (indicating that something in the registry was not set correctly).
Where can I find the Plesk config to disable SSLv2 on port 8443 on Windows? Finding the config file on Linux is easy enough.
Thanks,
When trying to scan for PCI compliance, they are flagged for port 8443 as using SSLv2.
At first, I figured this would be a simple fix of the registry, and did the following in SCHANNEL:
SSL2.0 - Added a DWORD "Enabled" and set its value to 0.
After a scheduled reboot, the problem is persisting.
It seems that Plesk is getting its SSL configuration through something other than IIS or Windows registry (at least, not the SCHANNEL).
Again, it is only flagging for port 8443, and not 443 (indicating that something in the registry was not set correctly).
Where can I find the Plesk config to disable SSLv2 on port 8443 on Windows? Finding the config file on Linux is easy enough.
Thanks,
