Saturday, 15 November 2014

How to Disable SSL V3.0 for Google Chrome (POODLE Attack part 4)

How to Disable SSL V3.0 for Google Chrome 

If you use Google Chrome, here it is how to disable SSL V 3.0. 

  1. Right click at your Chrome's desktop icon
  2. Properties
  3. At the end of the target field enter:
    " --ssl-version-min=tls1"
  4. Apply
  5. Quit Chrome
  6. Double Click on it again to open it
To prevent connections falling back to SSLv3 from being created, Google security engineer Adam Langley said that in Chrome 39, the ability to fallback to SSLv3 will be disabled by default.
"SSLv3-fallback is only needed to support buggy HTTPS servers," Langley said in a post to the Chromium security mailing list. "Servers that correctly support only SSLv3 will continue to work (for now), but some buggy servers may stop working.


No comments:

Post a Comment