How to Turn Off SSL 3.0 and TLS 1.0 in Your Internet Browser

This article will show you how to disable SSL 3.0 and TLS 1.0 in your browser.

Need an SSL certificate? has you covered. Compare options here to find the right choice for you.



After the POODLE unpleasantness, both Google and Chrome secured their latest browser versions (Firefox 35, Chrome 40) by barring the use of the SSL 3.0 encryption protocol entirely, since POODLE utilizes this protocol as an attack vector. (Microsoft has released various patches and quick-fixes for Internet Explorer 11 and states they’ll completely disable SSL 3.0 in April 2015.)

Disabling SSL 3.0 is definitely a Good Thing. However, the subsequent revelation that TLS 1.0 is also vulnerable seems to have caught them on the off foot. In this article, we will show you how to protect yourself by forcing your browser to use only the safer TLS 1.1 and TLS 1.2 protocols.

NOTE: POODLE and similar exploits work when both the server and browser ends of a supposedly safe connection can be tricked into using an obsolete protocol. If you have secured your browser to only use TLS 1.1/1.2 but the website’s server still relies on older, insecure protocols, be aware that you may have issues connecting to that site.

Not to name names here.
Not to name names here.
Compare UCC and SAN certificates, starting at $141.60 per year.


How to Turn Off SSL 3.0 and TLS 1.0 in Internet Explorer

  1. Left-click the gear icon:
  2. Select “Internet options” from the dropdown menu:
  3. Click the “Advanced” tab,  scroll down and deselect “SSL 3.0” and “TLS 1.0”.
  4. Click “OK” to accept your changes, which should take effect immediately. (You may need to refresh your browser.)

How to Turn Off SSL 3.0 and TLS 1.0 in Firefox

  1. In the address bar, type “about:config” and hit enter.
  2. In the “Search” field, enter “tls”. Find and double-click the entry for “security.tls.version.min”.
  3. Set the integer value to “2” to force a minimum protocol of TLS 1.1 (entering “3” would force TLS 1.2).
  4. This configuration will now show the new value and will take effect immediately (don’t forget to clear your cache).

How to Turn Off SSL 3.0 and TLS 1.0 in Google Chrome

Science marches on! A massive tip of the hat (or tip of the massive hat) to commentator John Giles for pointing out that using chrome://flags/ is the latest and easiest way to set the minimum protocol version in Chrome. We must note that Google hangs a red warning over using flags – however, our testing has yielded positive results.John says:

For Chrome, how about this?:


Under “Minimum SSL/TLS version supported.”, change from “Default” to “TLS 1.1?.

Then press the “Relaunch Now” button at the bottom of the page.

Thanks again, John!

Unlike IE and Firefox, Chrome can only be made to use TLS 1.1/1.2 by a command-line switch – an argument added to the string that fires up the browser. This can be implemented by setting up a shortcut as we will show you below, but note that ONLY starting Chrome from this shortcut will prevent use of insecure protocols.

To create a secure shortcut:

  1. Right-click on your desktop and select “New”, then “Shortcut”.
  2. In the “Create Shortcut” panel, browse to the location of your Chrome installation and select the Chrome icon – the default location is:


    C:Program Files (x86)GoogleChromeApplicationchrome.exe


  3. Add the following command line switch --ssl-version-min=tls1.1 after the item location (i.e., after the ending quote) to appear thus:


    "C:Program Files (x86)GoogleChromeApplicationchrome.exe" --ssl-version-min=tls1.1

    Make sure and separate the switch from the location with a space.

  4. Name the shortcut ( suggests giving it a unique name which will remind you that this shortcut is secure) and click “Finish.”
  5. Again, the only way to be certain that your Chrome session is secure will be using your new shortcut.
Need an SSL certificate? has you covered. Compare options here to find the right choice for you.


Read on to find out more about:

Thank you for choosing! If you have any questions, please contact us by email at, call 1-877-SSL-SECURE, or just click the chat link at the bottom right of this page. You can also find answers to many common support questions in our knowledgebase.

Subscribe To’s Newsletter

Don’t miss new articles and updates from

Stay Informed and Secure is a global leader in cybersecurity, PKI and digital certificates. Sign up to receive the latest industry news, tips, and product announcements from

We’d love your feedback

Take our survey and let us know your thoughts on your recent purchase.