2.4 Disable SSLv3
By default, SSLv3 should be disabled.
Specifying the weblogic.security.SSL.protocolVersion system
property in a command-line argument that starts the WebLogic Server lets you specify
the protocol that is used for SSL connections.
The following command-line arguments can be specified so that WebLogic Server supports only TLS connections:
- Dweblogic.security.SSL.protocolVersion=TLS1
Note:
If you don’t specify the above property, WebLogic assumes SSLv3 by default.Parent topic: Secure Installation and Configuration