How to disable SSL3 and enable TLS for various browsers?

View all eServices Personal FAQs

  1. Internet Explorer
  2. Mozilla Firefox
  3. Goggle Chrome / Chromium (Windows)
  4. Google Chrome (Max OS X)
  5. Safari
  6. Opera

  1. Internet Explorer

    1. Launch “Internet Explorer”.
    2. Go to “Tools” > “Internet Options”, and click on “Advanced” tab.
    3. Scroll down the list to uncheck “Use SSL 3.0” and check “Use TLS 1.0”.
    4. Click on “OK” to save the settings.

    Note: If you have an older version of Windows, such as Windows XP, make sure it is at least patched with SP3 to be able to access sites with SSLv3 disabled.

    Back to top

  2. Mozilla Firefox

    You can upgrade to Firefox version 34 (or above) which disables SSL3 by default, or alternatively, you may change the configuration of your browser as follows:

    1. Launch “Mozilla Firefox”.
    2. Type “about:config” in the Location Bar (also known as address bar) and press Enter.
    3. If you see the following prompt, click I’ll be careful, I promise!”.
    4. Search for “security.tls.version.min”, double-click it.
    5. Change the value to “1” and click “OK” to save changes. This setting will make TLS 1.0 the minimum required protocol version.

    Back to top

  3. Google Chrome/Chromium (Windows)

    You can upgrade to Chrome version 40 (or above) which disables SSL3 by default, or alternatively, you may change the configuration of your browser as follows:

    1. Right click on the Google Chrome shortcut and click on “Properties”.
    2. Click on “Shortcut” tab
    3. Enter the following parameter at the end of Target textbox. This parameter will enforce usage of TLS1 or higher protocols only.
      --ssl-version-min=tls1
    4. Click “OK” to save changes.

    Back to top

  4. Google Chrome (Mac OS X)

    You can upgrade to Chrome version 40 (or above) which disables SSL3 by default, or alternatively, you may change the configuration of your browser as follows:

    1. Open AppleScript Editor (in /Applications/Utilities/), and type this in:
      do shell script "open '/Applications/Google Chrome.app' --args --ssl-version-min=tls1"
    2. Save it as an Application.
    3. Add this application to the Dock.

    Back to top

  5. Safari

    Apple has released Security Update 2014-005, which disables CBC-mode ciphers in coordination with SSLv3. The patch is available for Mac OS Mavericks, Mountain Lion, and Yosemite. After you had installed the patch, there is no further action needed.

    Go to http://support.apple.com/en-us/HT203107 for more information.

    Back to top

  6. Opera

    You can upgrade to Opera 12 which disables SSL3 by default, or alternatively, you may change the configuration of your browser as follows:

    1. Press Ctrl + F12.
    2. Click on “Advanced” tab.
    3. Click on “Security” on the left menu
    4. Click on “Security protocols”
    5. Uncheck “Enable SSL 3”
    6. Click “OK”

    Back to top