If some try to get better and no weak results by setting the SSL config in WEBMIN GUI that doesn’t succeed while to old. (for port 10000, 2000 and so more)
PCI compliance hmm , but also weak
RsaKeyX and SHA1 stays
And sets stil in MINISERV.conf > AES256-SHA256:AES256-SHA256:RC4: so double part and RC4
wich is weak for long time now!
For newer updated specs / guidelines you can read them here .
Maybe if it is to much work for now.
As workarround have some docs / help files updated how to get this manualy right in miniserv.conf?
https://wiki.mozilla.org/Security/Server_Side_TLS#Recommended_configurations