|
|||||||
| Forums | Search Forums | Register | Forum Rules | Man Pages | Albums | FAQ | Members | Calendar | Search | Today's Posts | Mark Forums Read |
| Security Discuss UNIX and Linux computer and network security, cyber security, cyber attacks, IT security, and more. |
|
|
|
Thread Tools | Search this Thread | Display Modes |
|
#1
06-26-2012
|
|||
|
|||
|
How to disable TLS 1.0 support in Solaris
Hey Guys,
I have a couple servers that are getting flagged by by our network security team. How do I disable TLS 1.0 protocol within Solaris? The vulnerability is : CVE-2011-3389 TLS-SSL Server Blockwise Chosen-Boundary Browser Weakness |
| Sponsored Links | ||
|
|
#2
06-26-2012
|
|||
|
|||
|
It looks like Oracle says that this is a Java issue (JDK and JRE 7, 6 Update 27 and before, 5.0 Update 31 and before, 1.4.2_33 and before. JRockit R28.1.4 and before). Oracle says if your Java level is higher then the version above, your good. If not patch Java.
ref: Oracle Java Critical Patch Update - October 2011 If you don't need Java remove it. |
| Sponsored Links | ||
|
|
#3
08-08-2012
|
||||
|
||||
|
TLS is used by a multiplicty (or can be) of services. Was this for your Apache2 server? What does your SSLProtocol line look like? You can turn off all but SSLv2 with:
SSLProtocol -all +SSLv2 SSLCipherSuite SSLv2:+HIGH:+MEDIUM:+LOW:+EXP Cheers, Keith Duffin |
| Sponsored Links | ||
|
|
| Thread Tools | Search this Thread |
| Display Modes | |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Disable all the logs in Solaris | reddyr | Solaris | 8 | 02-02-2011 02:32 AM |
| Disable Inbuilt multipathing software of Solaris 10 | girish.batra | Solaris | 4 | 12-20-2008 04:23 AM |
| disable telnet on Solaris | March_2007 | Solaris | 11 | 03-01-2007 11:25 AM |
|
|
Linear Mode
