How to Set SSL Ciphers and update OpenSSL for PCI Compliant (Apache)
SSL Cipher Settings (PCI Compliant) If you going to use SSL for your site, make sure that you disable low level ciphers. To do this, simply edit: #/etc/httpd/conf.d/ssl.conf SSLProtocol -ALL +SSLv3 +TLSv1 SSLHonorCipherOrder On SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RCA4+RSA:+HIGH:!LOW:!MEDIUM #Save the file and restart the apache service httpd restart #check to see if the settings are working openssl […]
How to Remove Apache Header
Removing Apache Header Some third party scanners gives a warning about having the Apache server name to be public. One of the main reasons to hide this is to give hackers a hard time to guess what web servers you are using. Giving out your Apache version and your OS can let hackers quickly search […]
How to Setting Up VPS/Dedicated Server for the First Time on CentOS 6.x LEMP Version
I just signed up for this great deal at ChicagoVPS.net for a 2GB RAM, 2TB/Month, 50GB space at $40 + Tax (NY) / Year. (Check the deal at SlickDeals.net, as of March 09) I thought that the deal was great and wanted to give them a try. ChicagoVPS was cheap, but it did not stand […]