Disabling SSL 3.0 and TLS 1.0 in your browsers and enabling new versions (2024)

After POODLE many things has changed, the big ones like Google, Chrome, Microsoft, Mozilla had to reinforce the security in their browsers completely removing SSL 3.0 and TLS 1.0 cyphers protocols cause POODLE used these protocols as attack vectors.

While removing SSL 3.0 is a good thing, this disclosed that the version of TLS 1.0 was also vulnerable, but this version is still active by default in many browsers and operating systems. In this article we will see how to disable it in the mayor browsers so you can have an increased security while surfing the web.

Firefox

1- In the address bar, type about:config and press Enter.

2- In the search box enter tls. Find and double-click on security.tls.version.min.

3- Change the integer value to 2 to force the minimum version of the protocol to TLS 1.1 (entering 3 will force it to TLS 1.2).

You can also make sure that security.tls.version.max is 4 (this will force the maximum version of TLS to be TLS 1.3, which is the most current and secure).

4- This configuration will now show the new value and will be effective immediately (it is convenient to clean the browser cache and also restart it).

Chrome

1- Open Google Chrome.

2- Press the ALT + F key combination and select the Settings option.

3- Scroll down and select Advanced Settings.

4- Scroll down to the System section and click Open proxy settings.

5- In the new window select the Advanced tab.

6- Scroll down to the Security options and make sure you have checked the boxes Use TLS 1.1 and Use TLS 1.2 and UNCHECKED Use TLS 1.0 and Use SSL 3.0.

7- Click on the Apply button and then OK.

8- This configuration will be effective immediately (it is convenient to clean the browser cache and also restart it).

You can also enable TLS 1.3 which is the most current and secure version, typing chrome://flags/#tls13-variant in the Chrome browser bar and ensure the options is not disabled. You can select Default or Enabled.

Microsoft Internet Explorer

1- Open Internet Explorer.

2- From the Menu bar, go to Internet Options.

3- Then go to the Advanced Options tab.

4- Scroll down to the "Security" options and make sure you have checked the boxes Use TLS 1.1 and Use TLS 1.2 and UNCHEKED Use TLS 1.0 and Use SSL 3.0.

5- Click on the Apply button and then OK.

6- This configuration will be effective immediately (it is convenient to clean the browser cache and also restart it)

You can test your browser security using the following tools online:

https://www.cloudflare.com/ssl/encrypted-sni/

https://www.howsmyssl.com/

https://www.ssllabs.com/ssltest/viewMyClient.html

FAQs

Disabling SSL 3.0 and TLS 1.0 in your browsers and enabling new versions? ›

In the Internet Options window on the Advanced tab, under Settings, scroll down to the Security section. In the Security section, locate the Use SSL and Use TLS options and uncheck Use SSL 3.0 and Use SSL 2.0. If they are not already selected, check Use TLS 1.0, Use TLS 1.1, and Use TLS 1.2.

Read On ›

How to disable sslv3 in chrome browser? ›

Right click on the Google Chrome / Chromium shortcut on the Desktop, and click Properties. In Target, after the last character (a quote), add a space and then --ssl-version-min=tls1 . Click OK, and confirm if it asks for administrator privileges.

Discover More Details ›

How to disable TLS 1.0 in browser? ›

Open Internet Explorer.
From the Menu bar, go to Internet Options.
Then go to the Advanced Options tab.
Scroll down to the "Security" options and make sure you have checked the boxes Use TLS 1.1 and Use TLS 1.2 and UNCHEKED Use TLS 1.0 and Use SSL 3.0.
Click on the Apply button and then OK.

More items...

Should SSL 3.0 be enabled? ›

You should most definitely disable SSL version 3. It is not secure.

See Details ›

How do I disable SSL and enable TLS on a server? ›

Open registry on your server by running regedit in the run window. Navigate to the below location: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols . Now change DWORD values under Server and Client under TLS 1.0: DisabledByDefault [Value = 0] and Enabled [Value = 0] .

Find Out More ›

Should I disable SSLv3? ›

SSLv3 is an obsolete protocol, the main attack vector on which, at the time of writing, is an attack called POODLE. Disabling SSLv3 is the ultimate solution to mitigate security risks.

Tell Me More ›

How do I enable TLS 1.0 in Chrome? ›

Open the Tools menu (click on the tools icon or type Alt - x) and select Internet options. Select the Advanced tab. Scroll down to the bottom of the Settings section. If TLS is not enabled, select the checkboxes next to Use TLS 1.0, Use TLS 1.1, and Use TLS 1.2.

Show Me More ›

What happens if I turn off SSL? ›

Disabling SSL can create a security exposure where a malicious user within the network can attack the system.

Explore More ›

Should use SSL be on or off? ›

Extra protection is essential to ensure that none of this sensitive data is intercepted while in transit between your iPhone and an app or a website. So only dealing with sites and apps with SSL certificates installed is essential.

Should you always use SSL? ›

If you're asking yourself, “Do I need an SSL certificate?”, the fact is that every website should have an SSL certificate, even if they don't sell anything online. Let's go over why more in-depth below. SSL is a type of encryption protocol that secures data between browsers and servers so it can't be intercepted.

Show Me More ›

Why disable TLS? ›

If you are processing personal data, financial transactions or other sensitive classes of data, allowing legacy TLS is inadequate to meet your obligations, and show be disabled. If you run a normal website with normal users, legacy TLS is unnecessary, and does not need to be supported.

Read The Full Story ›

What is the difference between SSL and TLS? ›

However, SSL is an older technology that contains some security flaws. Transport Layer Security (TLS) is the upgraded version of SSL that fixes existing SSL vulnerabilities. TLS authenticates more efficiently and continues to support encrypted communication channels.

See Details ›

How to check TLS version in Chrome? ›

For Google Chrome & Microsoft Edge browser: o In the Windows menu search box, type 'Internet options'. o In the Internet Properties window, on the 'Advanced' tab, scroll down to the 'Security' section. o Make sure the 'User TLS 1.2' checkbox is checked.

Get More Info Here ›

How do I turn off SSL in Chrome? ›

Turn Off SSL Certificates on Google Chrome

Click the Chrome menu. on the browser toolbar.
Select Settings.
Click Show advanced settings.
Here are the various settings you can adjust: Don't change these settings unless you're sure of what you're doing. Phishing and malware protection.

How to disable SSL version 3? ›

How do I disable TLS in Google Chrome? ›

Disable TLS 1.3

It may happen that TLS 1.3 security features are incompatible with the SSL installed on Google Chrome. To disable TLS 1.3, open Chrome then types chrome://flags/#tls13-variant on the address bar. Locate TLS 1.3 then open the drop-down menu next to it. Disable it by setting it as 'Disabled.

View Details ›

How do I change the SSL settings in Chrome? ›

Configure SSL/TLS settings for Chrome browser from [Settings] -> [Show Advanced Settings] -> [Change Proxy Settings] -> [Advanced]. Scroll down to the Security settings. Click To See Full Image. Best Practice: Compare browser settings of a working computer with the conflicting one and perform the necessary changes.