Submitted by PatTzZ on Fri, 07/10/2015 - 10:53 Pro Licensee
Hi!
I optimised everything for PCI compliance but it seems that webmin always make me to have a notice of obsolete cryptography in Chrome.
I tried everything i know to have it changed but nothing.
Is it possible to pass thru this issue?
Thanks in advance!
Status:
Active
Comments
Submitted by andreychek on Fri, 07/10/2015 - 10:58 Comment #1
Howdy -- in Webmin -> Webmin -> Webmin Configuration -> SSL Encryption, what are the following options set to:
SSL protocol versionSSL protocol versions to reject
Force use of server-defined cipher order?
Allowed SSL ciphers
Submitted by PatTzZ on Fri, 07/10/2015 - 11:38 Pro Licensee Comment #2
I'll come back to you about it within the next minutes, now i have a bigger problem. We are restoring some backups on a new server and we reached the limit. I need to update the license. Will it be possible to activate it fast?
Submitted by PatTzZ on Fri, 07/10/2015 - 11:40 Pro Licensee Comment #3
I need to upgrade from 100 users to 250$
Can we do it now and you send me the invoice? How to proceed? It's rush, thanks.
Submitted by andreychek on Fri, 07/10/2015 - 11:42 Comment #4
Activations should always be fast :-)
If it doesn't happen automatically, just post a note here and we'll make sure it's updated.
Submitted by PatTzZ on Fri, 07/10/2015 - 11:43 Pro Licensee Comment #5
Ok, i found how to upgrade, it's done now.
How to have the server using this new limit now?
Submitted by andreychek on Fri, 07/10/2015 - 11:44 Comment #6
You can purchase upgrades using the Shop link above. Here's a direct link to the 100 to 250 upgrade that you mentioned:
https://www.virtualmin.com/catalog/virtualmin/upgrade/250
Submitted by PatTzZ on Fri, 07/10/2015 - 11:49 Pro Licensee Comment #7
Yes, i did it, Order 10455.
Can you upgrade please?
Submitted by andreychek on Fri, 07/10/2015 - 11:50 Comment #8
Virtualmin will automatically see it shortly; there's also a " Re-check Virtualmin license" button on the System Information screen that will handle that immediately.
Submitted by PatTzZ on Fri, 07/10/2015 - 11:57 Pro Licensee Comment #9
Great thanks, it's done.
Now, here are the replies to your questions:
SSL protocol version 10 SSL protocol versions to reject SSLv2 SSLv3 Force use of server-defined cipher order? Yes Allowed SSL ciphers EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:EECDH+RC4:RSA+RC4:!MD5 (i tried few things here but nothing changed)
Submitted by PatTzZ on Fri, 07/10/2015 - 13:40 Pro Licensee Comment #10
Do you have an idea?
Submitted by andreychek on Fri, 07/10/2015 - 14:58 Comment #11
Okay, thanks for that info.
Also, can you show us the exact error you're receiving when accessing Webmin? And is this a browser error, or a notice given by your PCI company?
Submitted by PatTzZ on Fri, 07/10/2015 - 15:33 Pro Licensee Comment #12
Submitted by andreychek on Fri, 07/10/2015 - 16:16 Comment #13
Well, I don't speak that language, but taking a guess at some of it -- one thing you may want to try is to set "SSL protocol version" to "Detect Automatically".
Setting that to "10" solved a problem at one point, but I would suggest setting that to Detect Automatically now, as it may be causing that issue.
After changing that setting, make sure that Webmin is restarted.