Depending on how your Nginx servers are configured, you may need to disable SSL v3.

Note that older versions of Internet Explorer may not have the TLS protocol enabled by default. If you disable SSL versions 2.0 and 3.0, the older versions of Internet Explorer will need to enable the TLS protocol before they can connect to your site.

Nginx: How to Disable the SSL v3 Protocol

  1. Locate your SSL Protocol Configuration on your Nginx server.

    For example,

    1. Type the following command:

      grep -r ssl_protocol /etc/nginx

      In this example, /etc/nginx is the base directory for the Nginx installation.

    2. The command will out put the available Server Blocks.

    3. Open the Server Block for which you are disabling the SSL v3 protocol.

  2. Add or update the following lines in your configuration:

    ssl_protocols TLSv1.2 TLSv1.1 TLSv1;

  3. Restart Nginx.

    For example, type the following command:

    sudo service nginx restart

  4. You have successfully disabled the SSL v3 protocol.



The DigiCert Difference

Related Links

SSL Certificates