{"id":6305,"date":"2014-11-06T10:26:09","date_gmt":"2014-11-06T15:26:09","guid":{"rendered":"http:\/\/southjerseytechies.net\/blog\/?p=6305"},"modified":"2025-11-03T14:26:52","modified_gmt":"2025-11-03T19:26:52","slug":"disable-ssl-3-0-on-your-server","status":"publish","type":"post","link":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/","title":{"rendered":"Disable SSL 3.0 on Your Server"},"content":{"rendered":"

 <\/p>\n

Due to a critical security vulnerability with SSL 3.0 \u00a0(an 18-year-old, outdated technology), we recommend disabling it on your server. We have instructions on how to do that in the Updating<\/strong> section but recommend reading the entire document to understand the scope of what this does.<\/p>\n

What does POODLE do?<\/strong>
\nIn short, it’s a way attackers can compromise SSL certificates if they’re on the same network as the target if (and only if) the server the target is communicating with supports SSL 3.0.<\/p>\n

Google has a lot more detail on their security blog here<\/a>.<\/p>\n

Does POODLE affect my server\/sites?<\/strong>
\nBecause POODLE is a vulnerability in SSL technology, it only impacts sites using SSL certificates. If your server or your sites don’t use an SSL certificate, you don’t need to update your server. However, we recommend doing it now in case you do end up installing an SSL certificate at a later date.<\/p>\n

Updating<\/strong>
\nHow you update your server depends on whether your server uses a Linux\u00ae distribution or Windows\u00ae and if it uses cPanel.<\/p>\n

cPanel<\/strong><\/p>\n

cPanel requires slightly different steps from any other control panel\/operating system configuration.<\/p>\n

To Configure cPanel to Prevent POODLE Vulnerability on HTTP<\/strong><\/p>\n

1. Log in to your cPanel\u00a0(more info).
\n2. In the Service Configuration<\/strong> section, click Apache Configuration<\/strong>.
\n3. Click Include Editor<\/strong>.
\n4. In the Pre Main Include<\/strong> section, from the Select an Apache Version<\/strong> menu, select All Versions<\/strong>.
\n5. In the field that displays, type the following, depending on which version of CentOS you’re using:<\/p>\n\n\n\n\n\n
CentOS Version<\/th>\nType this…<\/th>\n<\/tr>\n
Cent OS\/RHEL 6.x<\/td>\n\n
SSLHonorCipherOrder On
\nSSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2<\/div>\n<\/td>\n<\/tr>\n
Cent OS\/RHEL 5.x<\/td>\n\n
SSLHonorCipherOrder On
\nSSLProtocol -All +TLSv1<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

If you encounter errors while applying this update, please review this forum post at cPanel that discusses potential fixes.<\/p>\n

6. Click Update<\/strong>.<\/p>\n

Preventing POODLE on Other Protocols (FTP, etc.)<\/strong><\/p>\n

Right now, only servers using RHEL can protect themselves against POODLE on non-HTTPS protocols. They can do this by updating the latest version of OpenSSL, and then implementing TLS_FALLBACK_SCSV<\/a>.<\/p>\n

Servers using CentOS do not yet have a known fix for the vulnerability on non-HTTPS protocols. However, we will update this article with those instructions as soon as we do.<\/p>\n

Linux (Apache)<\/strong><\/p>\n

Modify your Apache configuration to include the following line:<\/p>\n

SSLProtocol All -SSLv2 -SSLv3<\/p>\n

For more information on how to do that, view Apache’s documentation<\/a>.<\/p>\n

Windows (IIS)<\/strong><\/p>\n

Modify your server’s registry (which removes access SSL 3.0 support from IIS) using Microsoft’s document here<\/a>. You can jump down to the Disable SSL 3.0 in Windows<\/strong> section.<\/p>\n","protected":false},"excerpt":{"rendered":"

  Due to a critical security vulnerability with SSL 3.0 \u00a0(an 18-year-old, outdated technology), we recommend disabling it on your server. We have instructions on how to do that in the Updating section but recommend reading the entire document to …<\/p>\n

Continue Reading→<\/span><\/a><\/p>\n","protected":false},"author":219,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"_links_to":"","_links_to_target":""},"categories":[142,478,24,23,4,16],"tags":[],"class_list":["post-6305","post","type-post","status-publish","format-standard","hentry","category-security","category-servers","category-ssl-certificates","category-web-hosting","category-website-uncategorized","category-windows"],"yoast_head":"\nDisable SSL 3.0 on Your Server<\/title>\n<meta name=\"description\" content=\"Due to a critical security vulnerability with SSL 3.0 \u00a0(an 18-year-old, outdated technology), we recommend disabling it on your server.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Disable SSL 3.0 on Your Server\" \/>\n<meta property=\"og:description\" content=\"Due to a critical security vulnerability with SSL 3.0 \u00a0(an 18-year-old, outdated technology), we recommend disabling it on your server.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/\" \/>\n<meta property=\"og:site_name\" content=\"South Jersey Techies\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/sjtechies\" \/>\n<meta property=\"article:published_time\" content=\"2014-11-06T15:26:09+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-11-03T19:26:52+00:00\" \/>\n<meta name=\"author\" content=\"Website Admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@sjtechies\" \/>\n<meta name=\"twitter:site\" content=\"@sjtechies\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Website Admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":[\"Article\",\"BlogPosting\"],\"@id\":\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/\"},\"author\":{\"name\":\"Website Admin\",\"@id\":\"https:\/\/southjerseytechies.net\/blog\/#\/schema\/person\/9fa9f56dfc58eea68b5680f2183c253f\"},\"headline\":\"Disable SSL 3.0 on Your Server\",\"datePublished\":\"2014-11-06T15:26:09+00:00\",\"dateModified\":\"2025-11-03T19:26:52+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/\"},\"wordCount\":427,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/southjerseytechies.net\/blog\/#organization\"},\"articleSection\":[\"Security\",\"Servers\",\"SSL Certificates\",\"Web Hosting\",\"Website\",\"Windows\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/\",\"url\":\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/\",\"name\":\"Disable SSL 3.0 on Your Server\",\"isPartOf\":{\"@id\":\"https:\/\/southjerseytechies.net\/blog\/#website\"},\"datePublished\":\"2014-11-06T15:26:09+00:00\",\"dateModified\":\"2025-11-03T19:26:52+00:00\",\"description\":\"Due to a critical security vulnerability with SSL 3.0 \u00a0(an 18-year-old, outdated technology), we recommend disabling it on your server.\",\"breadcrumb\":{\"@id\":\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/southjerseytechies.net\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Disable SSL 3.0 on Your Server\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/southjerseytechies.net\/blog\/#website\",\"url\":\"https:\/\/southjerseytechies.net\/blog\/\",\"name\":\"South Jersey Techies\",\"description\":\"Managed IT, Cloud Solutions, Web Services, Cabling, Voice over IP\",\"publisher\":{\"@id\":\"https:\/\/southjerseytechies.net\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/southjerseytechies.net\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/southjerseytechies.net\/blog\/#organization\",\"name\":\"South Jersey Techies, LLC\",\"url\":\"https:\/\/southjerseytechies.net\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/southjerseytechies.net\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/southjerseytechies.net\/blog\/wp-content\/uploads\/2017\/05\/sjt-logo-2015-b.png\",\"contentUrl\":\"https:\/\/southjerseytechies.net\/blog\/wp-content\/uploads\/2017\/05\/sjt-logo-2015-b.png\",\"width\":291,\"height\":201,\"caption\":\"South Jersey Techies, LLC\"},\"image\":{\"@id\":\"https:\/\/southjerseytechies.net\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/sjtechies\",\"https:\/\/x.com\/sjtechies\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/southjerseytechies.net\/blog\/#\/schema\/person\/9fa9f56dfc58eea68b5680f2183c253f\",\"name\":\"Website Admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/secure.gravatar.com\/avatar\/6dd9824aaa045dbc19ff6a4e9677c621e2cfee681044039917acad70980d36db?s=96&d=mm&r=g\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/6dd9824aaa045dbc19ff6a4e9677c621e2cfee681044039917acad70980d36db?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/6dd9824aaa045dbc19ff6a4e9677c621e2cfee681044039917acad70980d36db?s=96&d=mm&r=g\",\"caption\":\"Website Admin\"},\"sameAs\":[\"http:\/\/www.southjerseytechies.net\"],\"url\":\"https:\/\/southjerseytechies.net\/blog\/author\/support\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Disable SSL 3.0 on Your Server","description":"Due to a critical security vulnerability with SSL 3.0 \u00a0(an 18-year-old, outdated technology), we recommend disabling it on your server.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/","og_locale":"en_US","og_type":"article","og_title":"Disable SSL 3.0 on Your Server","og_description":"Due to a critical security vulnerability with SSL 3.0 \u00a0(an 18-year-old, outdated technology), we recommend disabling it on your server.","og_url":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/","og_site_name":"South Jersey Techies","article_publisher":"https:\/\/www.facebook.com\/sjtechies","article_published_time":"2014-11-06T15:26:09+00:00","article_modified_time":"2025-11-03T19:26:52+00:00","author":"Website Admin","twitter_card":"summary_large_image","twitter_creator":"@sjtechies","twitter_site":"@sjtechies","twitter_misc":{"Written by":"Website Admin","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":["Article","BlogPosting"],"@id":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/#article","isPartOf":{"@id":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/"},"author":{"name":"Website Admin","@id":"https:\/\/southjerseytechies.net\/blog\/#\/schema\/person\/9fa9f56dfc58eea68b5680f2183c253f"},"headline":"Disable SSL 3.0 on Your Server","datePublished":"2014-11-06T15:26:09+00:00","dateModified":"2025-11-03T19:26:52+00:00","mainEntityOfPage":{"@id":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/"},"wordCount":427,"commentCount":0,"publisher":{"@id":"https:\/\/southjerseytechies.net\/blog\/#organization"},"articleSection":["Security","Servers","SSL Certificates","Web Hosting","Website","Windows"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/","url":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/","name":"Disable SSL 3.0 on Your Server","isPartOf":{"@id":"https:\/\/southjerseytechies.net\/blog\/#website"},"datePublished":"2014-11-06T15:26:09+00:00","dateModified":"2025-11-03T19:26:52+00:00","description":"Due to a critical security vulnerability with SSL 3.0 \u00a0(an 18-year-old, outdated technology), we recommend disabling it on your server.","breadcrumb":{"@id":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/southjerseytechies.net\/blog\/disable-ssl-3-0-on-your-server\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/southjerseytechies.net\/blog\/"},{"@type":"ListItem","position":2,"name":"Disable SSL 3.0 on Your Server"}]},{"@type":"WebSite","@id":"https:\/\/southjerseytechies.net\/blog\/#website","url":"https:\/\/southjerseytechies.net\/blog\/","name":"South Jersey Techies","description":"Managed IT, Cloud Solutions, Web Services, Cabling, Voice over IP","publisher":{"@id":"https:\/\/southjerseytechies.net\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/southjerseytechies.net\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/southjerseytechies.net\/blog\/#organization","name":"South Jersey Techies, LLC","url":"https:\/\/southjerseytechies.net\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/southjerseytechies.net\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/southjerseytechies.net\/blog\/wp-content\/uploads\/2017\/05\/sjt-logo-2015-b.png","contentUrl":"https:\/\/southjerseytechies.net\/blog\/wp-content\/uploads\/2017\/05\/sjt-logo-2015-b.png","width":291,"height":201,"caption":"South Jersey Techies, LLC"},"image":{"@id":"https:\/\/southjerseytechies.net\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/sjtechies","https:\/\/x.com\/sjtechies"]},{"@type":"Person","@id":"https:\/\/southjerseytechies.net\/blog\/#\/schema\/person\/9fa9f56dfc58eea68b5680f2183c253f","name":"Website Admin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/6dd9824aaa045dbc19ff6a4e9677c621e2cfee681044039917acad70980d36db?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/6dd9824aaa045dbc19ff6a4e9677c621e2cfee681044039917acad70980d36db?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/6dd9824aaa045dbc19ff6a4e9677c621e2cfee681044039917acad70980d36db?s=96&d=mm&r=g","caption":"Website Admin"},"sameAs":["http:\/\/www.southjerseytechies.net"],"url":"https:\/\/southjerseytechies.net\/blog\/author\/support\/"}]}},"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p8eT50-1DH","_links":{"self":[{"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/posts\/6305","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/users\/219"}],"replies":[{"embeddable":true,"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/comments?post=6305"}],"version-history":[{"count":7,"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/posts\/6305\/revisions"}],"predecessor-version":[{"id":17314,"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/posts\/6305\/revisions\/17314"}],"wp:attachment":[{"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/media?parent=6305"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/categories?post=6305"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/southjerseytechies.net\/blog\/wp-json\/wp\/v2\/tags?post=6305"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}