Check If Your cPanel/WHM Server Is Vulnerable Over SSL V2 or V3

Here is a quick script for you to check if your cPanel/WHM server is vulnerable. Execute the following as root. If you get ANY cipher output, your server can be considered vulnerable. Replace the XXX.XXX.XXX.XXX with your server’s IP Address. Run this in Terminal as root. If there is no output, your SSL versions are securely disabled.

for port in 21 443 465 993 995 2083 2087 2078 2096; do echo “Scanning $port”; for cipher in $(openssl ciphers -sslv3 ‘ALL:eNULL’ | sed -e ‘s/:/ /g’); do echo -n | openssl s_client -sslv3 -cipher “$cipher” -connect xxx.xxx.xxx.xxx:$port 2>&1 | grep -i “Cipher is”; done; done