How can I disable SSLv3 support

CPanel servers:

From WHM >> Service Configuration >> Apache Configuration >> Include Editor, and include the following in Pre Main Include

SSLHonorCipherOrder On
SSLProtocol -All +TLSv1 +TLSv1.1 +TLSv1.2

Press the Update button to rebuild your Apache configuration and click the "restart Apache" button.

DirectAdmin servers:

Log is as root and issue: 

sed -i 's/+SSLv3/-SSLv3/g' /etc/httpd/conf/extra/httpd-ssl.conf  followed by service httpd restart


Login as root replace in /etc/nginx/nginx.conf:

ssl_protocols SSLv3 TLSv1 TLSv1.1 TLSv1.2;


ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

Restart Nginx.

/etc/init.d/nginx restart


Add the following to your Apache configuration: SSLProtocol All -SSLv2 -SSLv3

On Debian,Ubuntu  and Turnkey systems edit /etc/apache2/mods-available/ssl.conf and restart Apache via service apache2 restart.

On CentOS, Fedora and Scientific Linux edit /etc/httpd/conf.d/ssl.conf  and restart Apache via systemctl restart httpd.

Please use the following site to check if your server isn't supporting SSLv3  anymore:


Have more questions? Submit a request


Article is closed for comments.