Disabling TLS v1


#1

I’m using CloudFlare’s SSL, on the “Full” setting.

I’d like to disable use of TLS v1.

In the “Crypto” area of Cloudflare, I’ve set my “Minimum TLS Version” to TLS v1.1. I’ve waited a day just in case it took a while for the changes to propagate.

But it’s not working - at least, when I run the Qualsys ssl server test, it says that TLS v1.0 is supported:

https://www.ssllabs.com/ssltest/analyze.html?d=www.writingclasses.com&s=2400%3Acb00%3A2048%3A1%3A0%3A0%3A6819%3A7407

Am I doing something wrong?


#2
curl  --tlsv1.0 https://www.writingclasses.com
curl: (35) error:1407742E:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert protocol version

curl  --tlsv1.1 https://www.writingclasses.com
<!DOCTYPE html>
<html lang="en-US">
<head>
<meta charset="UTF-8"/> ...rest of html

I’m not sure what that tool is checking but Cloudflare is rejecting requests below 1.1 for your zone.


#3

thank you!


#4

This topic was automatically closed after 14 days. New replies are no longer allowed.