PCI compliance tests require you to disable weak ciphers and older TLS support.
You can do that by adding the following to your httpd.conf (Generally under /etc/httpd/conf/):
SSLProtocol all -SSLv2 SSLCipherSuite ALL:!ADH:!EXPORT56:+HIGH:+MEDIUM:-SSLv2:-RC4:+EXP
You must log in to post a comment.