Case Study Date: 13th of Jan 2016

Background

This client has a cPanel server which is running a single site using Magento. The site is used to process payments so important that its secure and when tested by SSL tools it  should display positive results.

Why we were contacted

The client ran an SSL check at the Qualys SSL Server Test page at https://www.ssllabs.com/ssltest/ and it was returning an F Grade (the lowest grade), so they contacted us to improve the score.

case-study-b-ssl-check-f-grade

First Job: Update SSL Ciphers

We updated the SSL Ciphers with a more comprehensive combination and after running the test again were presented with a B rating. It seems that prior to Apache 2.4, the DH Key lengths were 1024 bit, but a new requirement is they be 2048 bit.

case-study-b-ssl-check-b-grade

Second Job: Update Apache to 2.4

The server was running Apache 2.2 so we ran easyapache and upgraded to Apache 2.4. We then received an A+ rating on the SSL Checker.

case-study-b-ssl-check-a-grade

All in all this was not a terribly complicated project. There is always a risk of things going wrong with an apache upgrade and in this case things went smoothly and client is very happy!

case-study-b-ssl-check-rating2