Deleting the wiki page 'Securing the Website' cannot be undone. Continue?
In this guide we take additional steps to secure the website and reach PCI compliance.
These issues have been found:
The Diffie-Hellman parameter's size is only 1024 bits. A longer one must be generated to prevent Logjam vulnerability
Solution:
Genarate a 2048 bit Diffie-Hellman pair:
$ sudo openssl dhparam -out /etc/nginx/dhparams.pem 2048
Add this line in /etc/nginx/sites-available/cms:
ssl_dhparam /etc/nginx/dhparams.pem;
Restart Nginx:
$ sudo nginx -t && sudo systemctl restart nginx
Download the report in PDF form. You should score an A+ for PCI DSS after this.
Deleting the wiki page 'Securing the Website' cannot be undone. Continue?