PCI Compliance – Disable SSLv2 and Weak Ciphers

Section 4.1 of the the Payment Card Industry Data Security Standard (PCI-DSS) v1.2, merchants handling credit card data are required to “use strong cryptography and security protocols such as SSL/TLS or IPSEC to safeguard sensitive cardholder data during transmission over open, public networks.” Continue reading “PCI Compliance – Disable SSLv2 and Weak Ciphers”