Disable TLSv1 in Nginx
To disable TLSv1 in nginx, add
1 |
ssl_protocols TLSv1.1 TLSv1.2; |
in your server config.
if you are using letsencrypt SSL, edit file
1 |
vi /etc/letsencrypt/options-ssl-nginx.conf |
Find
1 |
ssl_protocols TLSv1 TLSv1.1 TLSv1.2; |
Replace with
1 |
ssl_protocols TLSv1.1 TLSv1.2; |
Restart Nginx
1 |
service nginx restart |
To verify, run
1 |
nmap --script ssl-enum-ciphers -p 443 DOMAIN.EXTN |
This will list all supported SSL protocols.
See Nginx