disable SSL 2.0 and enable SSL 3.0 or TLS 1.0

is there an easy way to disable SSL 2.0 and use SSL 3.0 or TLS 1.0 instead?


Centos 5.1
Virtualmin 3.56


yes there is.
After reading a lot of documentation on it, I haven’t been able to switch successfully though

I have added changed

SSLProtocol -all +SSLv3 +TLSv1

to the ssl config file and the SSL answers in tlsv1 when i connect (openssl s_client -connect localhost:443)but will still respond on sslv2 as well which i do not want. Got to be away of disabling it


change +SSLv2 to !SSLv2 will disable SSL v2.0

But that will probably break any SSL cert issued by another provider.

PCI is well known to be overkill in all its requirements and people are constantly hating them. BTW – they will and o change there policy at will and cancel anyone not following them in less then 12 hours so beware.