Physical Address

304 North Cardinal St.
Dorchester Center, MA 02124

This server supports anonymous (insecure) suites – WHM / cPanel

We recently ran a scan for a clients site (ssllabs.com) and got the following error messages

 

This server supports anonymous (insecure) suites (see below for details). Grade set to F.

This server is vulnerable to the POODLE attack. If possible, disable SSL 3 to mitigate. Grade capped to C.

 

To fix these you’ll need to change the SSL Cipher, do this by heading over to Global Configuration under

Home »Service Configuration »Apache Configuration »Global Configuration

Under SSL Cipher Suite enter the following:

ALL:!ADH:-RC4+RSA:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP:!kEDH:!aNULL

Save, rebuild and run the scan again.

Note: Make sure you click Clear Cache under the URL to get fresh results.