To disable SSLv3 in the Nginx web server, you can use the ssl_protocols
directive. This will be located in the server
or http
blocks in your configuration.
For instance, on Ubuntu, you can either add this globally to /etc/nginx/nginx.conf
inside of the http
block, or to each server
block in the /etc/nginx/sites-enabled
directory.
sudo nano /etc/nginx/nginx.conf
To disable SSLv3, your ssl_protocols
directive should be set like this:
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
You should restart the server after you have made the above modification:
sudo service nginx restart