CentOS server keeps failing PCI compliance scan

1158105 pts.
Tags:
Apache
CentOS
PCI compliance
Our CentOS server continues to fail the PCI compliance scan. Here's what keeps failing:
openssl < 0.9.8.o.
rpm -q openssl shows: openssl-0.9.8e-12.el5_5.7
Here's the Apache header banner:
Server: Apache/1.3.41 (Unix) PHP/5.2.14 mod_psoft_traffic/0.2 mod_ssl/2.8.31 OpenSSL/0.9.8b mod_macro/1.1.2
Should we build all these libraries from source so we can get them on the latest version? Thank you.
0

Answer Wiki

Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.
  • Kevin Beaver
    What is the vulnerability being claimed?
    27,550 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.

Following

Share this item with your network: