Disabling SSL 3.0 and TLS 1.0 in your browsers and enabling new versions

After POODLE many things has changed, the big ones like Google, Chrome, Microsoft, Mozilla had to reinforce the security in their browsers completely removing SSL 3.0 and TLS 1.0 cyphers protocols cause POODLE used these protocols as attack vectors.

While removing SSL 3.0 is a good thing, this disclosed that the version of TLS 1.0 was also vulnerable, but this version is still active by default in many browsers and operating systems. In this article we will see how to disable it in the mayor browsers so you can have an increased security while surfing the web.



Firefox

1. In the address bar, type "about:config" and press Enter.



2. In the search box enter "tls". Find and double-click on  "security.tls.version.min".



3. Change the integer value to "2" to force the minimum version of the protocol to TLS 1.1 (entering "3" will force it to TLS 1.2).

You can also make sure that "security.tls.version.max" is "4" (this will force the maximum version of TLS to be TLS 1.3, which is the most current and secure).



4. This configuration will now show the new value and will be effective immediately (it is convenient to clean the browser cache and also restart it).




Chrome

1. Open Google Chrome.
2. Press the "ALT + F" key combination and select the "Settings" option.


3. Scroll down and select "Advanced Settings".


4. Scroll down to the "System" section and click "Open proxy settings".


5. In the new window select the "Advanced" tab.


6. Scroll down to the "Security" options and make sure you have checked the boxes "Use TLS 1.1" and "Use TLS 1.2" and UNCHECKED "Use TLS 1.0" and "Use SSL 3.0".
7. Click on the "Apply" button and then "OK".
8. This configuration will be effective immediately (it is convenient to clean the browser cache and also restart it).

You can also enable TLS 1.3 which is the most current and secure version, typing "chrome://flags/#tls13-variant" in the Chrome browser bar and ensure the options is not disabled. You can select Default or Enabled.





Microsoft Internet Explorer

1. Open Internet Explorer.
2. From the Menu bar, go to "Internet Options".


3. Then go to the "Advanced Options" tab.
4. Scroll down to the "Security" options and make sure you have checked the boxes "Use TLS 1.1" and "Use TLS 1.2" and UNCHEKED "Use TLS 1.0" and "Use SSL 3.0".
5. Click on the "Apply" button and then "OK".
6. This configuration will be effective immediately (it is convenient to clean the browser cache and also restart it).

You can test your browser security using the following tools online:

https://www.cloudflare.com/ssl/encrypted-sni/

https://www.howsmyssl.com/

https://www.ssllabs.com/ssltest/viewMyClient.html



  • poodle, tls, ssl, ssl 3.0, tls 1.0, secure browser, vulnerability, tls 1.3
  • 0 Users Found This Useful
Was this answer helpful?
Related Articles
Copyright © 2020 PlusPlusHosting.Net. All Rights Reserved.
2Checkout.com is an authorized reseller of goods and services provided by PlusPlusHosting.Net.