diff --git a/apache/vhost-ssl.conf b/apache/vhost-ssl.conf
index 6c599a9..bfb4da9 100644
--- a/apache/vhost-ssl.conf
+++ b/apache/vhost-ssl.conf
@@ -7,8 +7,18 @@
     ErrorLog ${APACHE_LOG_DIR}/error.log
     CustomLog ${APACHE_LOG_DIR}/access.log combined
 
+    SSLEngine on
     SSLCertificateFile    /etc/ssl/certs/mycert.crt
     SSLCertificateKeyFile /etc/ssl/private/mycert.key
 
+    # 🔐 SSL Security Hardening
+    SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
+    SSLCipherSuite HIGH:!aNULL:!MD5:!3DES:!RSA:!AES128-SHA:!AES256-SHA:!AES256-CCM:!AES256-CCM8
+    SSLHonorCipherOrder on
+
+    # Optional: Better compatibility for TLS 1.3
+    SSLCompression off
+
+    # For large requests (Eramba imports/exports)
     LimitRequestLine 20000
 </VirtualHost>
diff --git a/docker-compose.simple-install.enterprise.yml b/docker-compose.simple-install.enterprise.yml
index 3da5957..b977aab 100644
--- a/docker-compose.simple-install.enterprise.yml
+++ b/docker-compose.simple-install.enterprise.yml
@@ -1,4 +1,3 @@
-version: '3.9'
 services:
   eramba:
     image: ghcr.io/eramba/eramba-enterprise:latest
diff --git a/docker-compose.simple-install.yml b/docker-compose.simple-install.yml
index 06a5769..9ce173c 100644
--- a/docker-compose.simple-install.yml
+++ b/docker-compose.simple-install.yml
@@ -1,10 +1,11 @@
-version: '3.9'
 services:
   mysql:
     container_name: mysql
-    image: mysql:8.0.28-oracle
+    image: mysql:8.4.3-oracle
     command: ["mysqld", "--disable-log-bin"]
     restart: always
+    ports:
+      - 13306:3306
     volumes:
       - db-data:/var/lib/mysql
       - ./mysql/conf.d:/etc/mysql/conf.d
@@ -16,7 +17,7 @@ services:
       MYSQL_ROOT_PASSWORD: ${MYSQL_ROOT_PASSWORD}
   redis:
     container_name: redis
-    image: redis:6.0.16-alpine
+    image: redis:7.4.2-alpine
     restart: always
   eramba:
     container_name: eramba
diff --git a/mysql/conf.d/custom.cnf b/mysql/conf.d/custom.cnf
index 1f7459a..a8fdb86 100644
--- a/mysql/conf.d/custom.cnf
+++ b/mysql/conf.d/custom.cnf
@@ -8,11 +8,9 @@ innodb_stats_on_metadata=OFF
 binlog_row_image=MINIMAL
 sync_binlog=1
 local_infile=OFF
-master_verify_checksum=ON
+source_verify_checksum=ON
 relay_log_purge=1
-binlog_expire_logs_seconds=604800
-slave_sql_verify_checksum=1
-skip-host-cache
+replica_sql_verify_checksum=1
 skip-name-resolve
 slow_query_log=1
 slow_query_log_file=/tmp/mysql-slow.log