• Register

How do I disable SSL v3?

0 votes
472 views
I'm running Apache. Some visitors are getting the yellow sign on their Chrome browser Windows. I'm told it's because we still use SSLv3 (due to POODLE). How do I disable SSLv3?
asked Jan 26, 2015 in SSL Certificates by bobbyjoe (160 points)
    

2 Answers

0 votes
It's easy to update the apache web server to diable SSLv3 and to protect your websites from the Poodle Vulneralbility.  The exact method depents on which version of apache you are using, but here are some highlights:

For the latest versions of apache, you would simply specify all protocols except SSLv2 and SSLv3.

SSLProtocol All -SSLv2 -SSLv3

 

For version 2.2.22 of apache and earlier, please use the following format to only allow the TLS protocol.  In this situation, TLSv1 is used as a wildcard to mean all TLS protocols.

SSLProtocol TLSv1

 

For Apache + mod_ssl, edit the apache configuration file commonly located at /etc/httpd/conf.d/nss.conf to only allow TLS 1.0 and above:

NSSprotocol TLSv1.0, TLSv1.1
answered Jan 27, 2015 by TomZ. (1,090 points)
0 votes

Very simple  Way to Disable the SSL v3 Protocol:

  1. Log into your server as a user with Administrator privileges.
  2. Download DisableSSL3.zip, extract the .zip file contents, and then double-click DisableSSL3.reg.
  3. In the Registry Editor caution window, click Yes.
  4. Restart server.

More info about SSL Tools

answered Oct 20, 2015 by vglann (180 points)

Related questions

0 votes
1 answer 10,185 views
0 votes
1 answer 2,182 views
0 votes
1 answer 571 views
...