Page 1 of 1

Poodle vulnerability SSLv3 registry settings

Posted: Thu Feb 26, 2015 11:00 pm
by ForumAdmin
To disable SSLv3 in builds of Core FTP Server that do not have the ability to disable SSLv3 only.


"Disable SSL 3.0 in Windows
For Server Software"


technet.microsoft.com/en-us/library/security/3009008.aspx


Disable SSL 3.0 in Windows
For Server Software

You can disable support for the SSL 3.0 protocol on Windows by following these steps:

1.Click Start, click Run, type regedt32 or type regedit, and then click OK.

2.In Registry Editor, locate the following registry key:
HKey_Local_Machine\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Server

Note If the complete registry key path does not exist, you can create it by expanding the available keys and using the New -> Key option from the Edit menu.

3.On the Edit menu, click Add Value.

4.In the Data Type list, click DWORD.

5.In the Value Name box, type Enabled, and then click OK.
Note If this value is present, double-click the value to edit its current value.

6.In the Edit DWORD (32-bit) Value dialog box, type 0 .

7.Click OK. Restart the computer.



Note This workaround will disable SSL 3.0 for all server software installed on a system, including IIS.


Note After applying this workaround, clients that rely only on SSL 3.0 will not be able to communicate with the server.