I have updated my ssl.conf file on my Apache2 configuration to use the following SSLCipherSuite
SSLProtocol all -SSLv2
SSLCipherSuite HIGH:MEDIUM:!ADH
However the PCI scan seems to detect that WEAK and MEDIUM ciphers are still enabled.
However, I have restarted Apache but it has had no effect.
I'd like to be able to probe the server to see which ciphers it is allowing without having to constantly wait for the PCI scan to run each time I make a change. How can I do this?
Best Answer
indiv posted a script here that can tell you what cipher suites are accepted by a site. Should work for your purposes.
You can also use Qualys's SSL scanner. It will tell you the same info.