(WHM >> Home >> Service Configuration >> cPanel Web Services Configuration)
Overview
The system uses cipher suites to negotiate security settings for network connections over TLS/SSL. This interface allows you to edit the TLS/SSL Cipher List and TLS/SSL Protocol list for cPanel, WHM, and Webmail.
Warning:
As of cPanel & WHM version 68, we only support Transport Layer Security (TLS) protocol version 1.2.
Important:
We recommend that only advanced users edit the cipher and protocol lists.
Defaults
By default, cPanel & WHM uses the following cipher list for web services:
By default, cPanel & WHM uses the following protocol list for web services:
Edit the cipher list
To edit the cipher list, enter the appropriate cipher in the text box and click Save.
Notes:
- The default cipher list is PCI compliant. To edit the cipher list to improve the security level on your server, read Apache's SSLCipherSuite Directive documentation.
- We do not recommend that you edit the cipher list to lower the security level. Make certain that the cipher suite uses at least 128-bit encryption.
Edit the protocol list
To edit the protocol list, enter the appropriate protocol list in the text box and click Save.
Additional documentation