How to disable SSL 3.0 for Tomcat Based GridServer and SilverFabric Managers (CVE-2014-3566, also known as Poodle)

How to disable SSL 3.0 for Tomcat Based GridServer and SilverFabric Managers (CVE-2014-3566, also known as Poodle)

book

Article ID: KB0108209

calendar_today

Updated On:

Products Versions
TIBCO Silver Fabric -
Not Applicable -

Description

Description:

Resolution: 
1).  Edit the Tomcat server.xml located in root of the Manager directory (fabric//conf, datasynapse/manager/conf).
2).  Replace the allowable protocols for the SSL connectors.   Change SSLProtocol="all" to SSLProtocol="TLSv1".
3).  Restart the Broker.

Environment

All

Resolution

1).  Edit the Tomcat server.xml located in root of the Manager directory (fabric//conf, datasynapse/manager/conf).
2).  Replace the allowable protocols for the SSL connectors.   Change SSLProtocol="all" to SSLProtocol="TLSv1".
3).  Restart the Broker.

Issue/Introduction

How to disable SSL 3.0 for Tomcat Based GridServer and SilverFabric Managers (CVE-2014-3566, also known as Poodle)