Just in case anyone else ever faces this issue.
Did the following
Install the latest openssl build just for safety sake.
sudo apt-get purge openssl
sudo apt-get clean
wget (long openssl tar.gz url for 1.0.1g)
tar -zxvf (openssl file)
./config no-sslv2 no-sslv3 (so that we get rid of the old versions from the getgo)
make
checkinstall (because checkinstall does a nice job of making a easy .deb package)
(then update the path to use the new ssl version, you can go to openssl for a better tutorial)
After this, I then downloaded the openfire source, and compiled it on JDK Oracle 7 with OpenSSL version 1.0.1g
The old cyphers are gone, and SSLv2 and SSLv3 are disabled because openssl no longer has them.
So in the end, the easiest way was to just compile it all from source. 