Skip to content

Instantly share code, notes, and snippets.

What would you like to do?
Disable SSL 3.0 on the Server for IIS etc,
@REM Disable server side
REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\SSL 3.0\Server" /VE
REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\SSL 3.0\Server" /V Enabled /T REG_DWORD /D 0
@REM To force disable client side, overkill. Use client config (i.e. IE Internet Options etc.)
@REM REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\SSL 3.0\Client" /VE
@REM REG ADD "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\SSL 3.0\Client" /V DisabledByDefault /T REG_DWORD /d 1

This comment has been minimized.

Copy link
Owner Author

arebee commented Oct 16, 2014

Run from an elevated command prompt. Thanks to @ericlaw on Twitter for the suggestion to rem out the client side and rely on settings in apps.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.