I'm going to show you how to disable SSL 3 on Apache httpd (CentOS). You will need sudo permission to execute the statements. Please check out my post "POODLE attack - SSL 3" if you don't know what a POODLE attack is.
How to disable SSL 3?
First open the file /etc/httpd/conf.d/ssl.conf and find the section which start with
# SSL Protocol support: # List the enable protocol levels with which clients will be able to # connect. Disable SSLv2 access by default: SSLProtocol all -SSLv2
Change the statement to
SSLProtocol all -SSLv2 -SSLv3
This will disable the SSL protocol for your server. With this set, you have to restart the httpd daemon:
systemctl restart httpd
You can now check on https://www.ssllabs.com/ssltest/ what protocols your web server supports.
Your result should look similar to this:
Please comment below, if you have any questions.
- OS: CentOS 7
- Web server: Apache httpd 2.4.6