Bluehost Web Hosting Help

Disable SSLv3 on a VPS or Dedicated Server

Overview

This article will explain how to disable SSLv3 on a VPS or Dedicated server. This can help you avoid issues with vulnerabilities in SSLv3.

What you need

To begin, you will need to be able to login into your WHM.

Note: If this is your first time logging into the WHM, you may see a page titled Feature Showcase. Click on Exit to WHM at the bottom of the page.

Once logged in, you will need to open the Apache settings.

Open the Apache settings

  1. Type Apache in the search bar at the top left of the WHM.
  2. In the search results, click on Apache Configuration.

Change the SSL Cipher and Protocol settings

  1. On the Apache Configuration page, click on Global Configuration.
  2. The first option should be SSL Cipher Suite. Select the 2nd option, then copy this text into the box:
    ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:-LOW:-SSLv2:-EXP:!kEDH
  3. Under SSL/TLS Protocols, ensure the default setting, All -SSLv2 -SSLv3, is selected.
  4. Scroll to the bottom of the page and click the Save button.
  5. Click the Rebuild Configuration and Restart Apache button.

Note: After following these steps, it may be necessary to add "Options +FollowSymLinks" to the .htaccess file for your site.

Test the configuration

To test that SSL is disabled, you run this command:

curl -IL –sslv3 https://domain.com

Note: Replace domain.com with the domain for your site.

If SSLv3 has been disabled, you should see a message like this:

curl: (35) error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure

Knowledgebase Article 113,417 views bookmark
share
Share or save this via:
tags: dedi dedicated ssl vps


Was this resource helpful?
Helpful Unhelpful


Did this resolve your issue?
Solved Unsolved


Please add any other comments or suggestions about this content:





Recommended Help Content

VPS Dedicated Installing SSL

To help with installing an SSL certificate for an account on a dedicated server through the WHM

Error Code 500 on Dedicated and VPS Servers

This article will explain some common causes for 500 errors on Dedicated or V.P.S servers.

VPS or Dedicated Hosting - Manage Login SSL Certificates

How to manage the SSL used for cPanel login through the WHM

Related Help Content

VPS and Dedicated Hosting: Enabling FTP on New Servers

This article will explain how-to enable FTP on a newly provisioned VPS or Dedicated cPanel server. Since FTP is an unsecured connection point to the server, cPanel has it disabled by default in version 11.86 or prior.

Restart a Dedicated or VPS Server.

This article will explain how to restart your Dedicated or VPS server.

Enable Non Legacy Backup on Dedicated or VPS Servers

This article will explain how to configure your dedicated or VPS server to use the new (non legacy) backup system.

Managing Users on a VPS or Dedicated Server

This article will explain how to create and manage users on Dedicated or VPS servers.

Restarting Mail Services on Dedicated or VPS Servers

This article will explain how to restart the email related services on a Dedicated or VPS server. This may be useful if you are experiencing trouble with your email.

Access Mail Logs on Dedicated or VPS Servers

This article will explain how to view the email logs on a Dedicated or VPS server. This may be usefull if you are experiencing trouble with your email.

Clearing the Mail Queue on VPS and Dedicated Servers

This article will explain how to clear the outbound mail queue on a dedicated or VPS server.

VPS and Dedicated Hosting: Restore or Transfer cPanel

If you need to transfer or restore a cPanel account for your VPS or Dedicated server, there is a tool within the WHM panel to perform these tasks. This article is about transferring or restoring from another server or restoring after a re-image.