hometriangle-righttriangle-leftmenu3

Server PCI: Disable SSL v2 and SSL v3

DISABLING SSL V2 AND SSL V3 / WINDOWS SERVER 2008

Instructions:

1. Copy disable-ssl.reg to the server, or copy contents into new file.reg
2. Open on server... this should update the registry
3. That''s it.

Confirm this works

You can confirm with [url:3unirlem]https://www.ssllabs.com/ssltest/analyze.html[/url:3unirlem]...

Shouldn''t get messages like:

"This server supports SSL 2, which is obsolete and insecure, and can be used against TLS (DROWN attack). Grade set to F."
"This server uses SSL 3, which is obsolete and insecure. Grade capped to B."

Note: that from 2018 I believe TLS 1.1 is minimum requirement

Reg File Contents
Alternatively see Z:/1688/www2015ig/public_html/docs/ServerPCI/

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Server]
"Enabled"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Server]
"Enabled"=dword:00000000


"Enabled"=dword:00000000

Save as disable-ssl.reg (or another suitable filename... up to you)

CE

Copyright © 2026 Spiderscope. All Rights Reserved.