LBN -- how to secure Apache TOMCAT server from vulnerability issue (CVE-2020-1938) named as 'GhostCat' for TIBCO Patterns

LBN -- how to secure Apache TOMCAT server from vulnerability issue (CVE-2020-1938) named as 'GhostCat' for TIBCO Patterns

book

Article ID: KB0075937

calendar_today

Updated On:

Products Versions
TIBCO Patterns 5.1.0, 5.2.0, 5.3.0, 5.4.0, 5.5.0

Description

Update the existing version of Apache Tomcat® 9.0.27 in  the TIBCO Patterns to disable the Apache Tomcat® AJP Connector
1. Take a backup of the existing server.xml file from @TPS_HOME/patterns_gui/tomcat/conf

2. Open the original server.xml file and delete or comment out the following line for the AJP Connector.
<Connector port="7009" protocol="AJP/1.3" redirectPort="7443"/>

3. Save the server.xml file.

4. Re-Start the TOMCAT server.

Environment

All

Issue/Introduction

LBN -- how to secure Apache TOMCAT server from vulnerability issue (CVE-2020-1938) named as 'GhostCat' for TIBCO Patterns
Powered by Wolken Software