GridServer 5.0SP3 Patch 20141022has been releaseed
Article ID: KB0103231
Updated On:
| Products | Versions |
|---|---|
| TIBCO DataSynapse GridServer | - |
| Not Applicable | - |
Description
Description:
Closed Issues in 5_SP3_P20141022 (This Release)
Security
GS-12779
Resin has been patched to allow specification of enabled SSL protocols,
primarily to disable SSL 3.0, which is vulnerable to CVE-2014-3566, also known
as the POODLE attack. To disable SSL 3.0, open up the 'resin.conf' file in a
text editor, and in the <jsse> element, add the following element after
<password>: '<protocols>TLSv1,SSLv2Hello</protocols>'. This enables the
TLS protocol that is enabled by default, but disables SSL 3.0. (SSLv2Hello
is required for the initial handshake.)
Issue/Introduction
GridServer 5.0SP3 Patch 20141022has been releaseed
Feedback
Yes
No
Powered by
