Domain is not secured: RC4 cipher algorithm is enabled

Created:

2016-11-16 12:43:05 UTC

Modified:

2017-05-17 16:38:15 UTC

0

Was this article helpful?


Have more questions?

Submit a request

Domain is not secured: RC4 cipher algorithm is enabled

Applicable to:

  • Plesk 12.0 for Linux

Symptoms

SSL test shows error:

Disable the RC4 cipher suite and update the web server to support the Advanced Encryption Standard (AES) cipher algorithm. Contact your web server vendor for assistance.

SSL test may be done with any public SSL checker, for example, https://cryptoreport.geotrust.com/checker/views/certCheck.jsp or https://www.ssllabs.com/index.html

PCI Compliance is enabled on a server.

Cause

RC4 ciphers are enabled

Resolution

Edit /etc/httpd/conf/plesk.conf.d/server.conf file by adding the following line to exclude RC4 ciphers:

SSLCipherSuite ECDH+AESGCM:ECDH+AES256:ECDH+AES128:ECDH+3DES:RSA+AES:RSA+3DES:RC4+SHA!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!ADH:!AECDH:!MD5:!DSS:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA
Have more questions? Submit a request
Please sign in to leave a comment.