Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Disable SSLv2 in HMC
Operating Systems AIX Disable SSLv2 in HMC Post 302910478 by dukessd on Thursday 24th of July 2014 06:26:31 PM
Old 07-24-2014
Thanks bakunin, very useful post and gave me a big smile ;0)
 

10 More Discussions You Might Find Interesting

1. AIX

Hmc

Well i am right now working on an IBM P550 risc server with an HMC connected.. The server has 2 logical partitions (Lpar). both lpar is having Aix 5.3 installed. Now I have a doubt.. is it possible to have Aix in one lpar and windows 2003 in another.. cheers Bala (4 Replies)
Discussion started by: balaji_prk
4 Replies

2. AIX

Hmc

Hello everybody, had a question. Iam having a p650 box here, System Model: IBM,7038-6M2 Machine Serial Number: 1078DCC managed system - 1 which has 2 lpars on it i added memory to the box(made sure that memory added was in proper quads and was verified by a CE) after i rebooted the box, the... (4 Replies)
Discussion started by: karthikosu
4 Replies

3. AIX

HMC Backup

I have a few HMC questions. Version: 7 Release: 3.3.0 Build Level: 20080421.1 Base Version: V7R3.3.0 Model Type: 7042CR4 1. What are the types of backups should be performed on the HMC in case of disaster? From what I gather in the documentation, there is a critical data backup and a... (2 Replies)
Discussion started by: AIXtexas
2 Replies

4. AIX

HMC upgrades

Hey!!! Has anyone done HMC patch installation remotely? I would love to know if that would be possible. I have been doing through CD/DVD but hate to do the additional work of finding someone in the DC and sending him the CD's. I have seen the option to supply remote site. can that be helpful?... (5 Replies)
Discussion started by: balaji_prk
5 Replies

5. Shell Programming and Scripting

How to disable Enable/Disable Tab Key

Hi All, I have bash script, so what is sintax script in bash for Enable and Disable Tab Key. Thanks for your help.:( Thanks, Rico (1 Reply)
Discussion started by: carnegiex
1 Replies

6. AIX

LSSVCEVENTS [HMC]

Hi all :) two question... 1) in which file the HMC events will be stored? i talking about the log of the HMC console (lssvcevent). 2) The HMC function "Backup Critical Data" store the backup also on remote server through SFTP? In the documentation i read only FTP and NFS. ... (1 Reply)
Discussion started by: Zio Bill
1 Replies

7. AIX

HMC commands

Hi anybody know how to dynamically add a virtual ethernet to a running LPAR using the HMC CLI? (4 Replies)
Discussion started by: pwright84
4 Replies

8. Red Hat

SSL/TLS renegotiation DoS -how to disable? Is it advisable to disable?

Hi all Expertise, I have following issue to solve, SSL / TLS Renegotiation DoS (low) 222.225.12.13 Ease of Exploitation Moderate Port 443/tcp Family Miscellaneous Following is the problem description:------------------ Description The remote service encrypts traffic using TLS / SSL and... (2 Replies)
Discussion started by: manalisharmabe
2 Replies

9. AIX

HMC Upgrade

Hi Experts So we have two data center .I upgraded the HMC in one datacenter, very easy no problem, but in the second datacenter we have dual HMC connection. I am looking at the document from the ibm documentation. I found something that I am not comfortable following. which is this : Physically... (2 Replies)
Discussion started by: JME2015
2 Replies

10. UNIX for Advanced & Expert Users

SSLv2 and 3 detection in AIX 7.1 fresh installation

I have installed AIX 7.1 OS and there is nothing installed except i upgraded java 5 to 7 .When i run the Nessus scan i can see sslv2 and sslv3 detection. (0 Replies)
Discussion started by: khalid khanAIB
0 Replies

LEARN ABOUT V7

ssl_ctx_new

SSL_CTX_new(3SSL)						      OpenSSL							 SSL_CTX_new(3SSL)

NAME

       SSL_CTX_new - create a new SSL_CTX object as framework for TLS/SSL enabled functions

SYNOPSIS

	#include <openssl/ssl.h>

	SSL_CTX *SSL_CTX_new(const SSL_METHOD *method);

DESCRIPTION

       SSL_CTX_new() creates a new SSL_CTX object as framework to establish TLS/SSL enabled connections.

NOTES

       The SSL_CTX object uses method as connection method. The methods exist in a generic type (for client and server use), a server only type,
       and a client only type. method can be of the following types:

       SSLv2_method(void), SSLv2_server_method(void), SSLv2_client_method(void)
	   A TLS/SSL connection established with these methods will only understand the SSLv2 protocol. A client will send out SSLv2 client hello
	   messages and will also indicate that it only understand SSLv2. A server will only understand SSLv2 client hello messages.

       SSLv3_method(void), SSLv3_server_method(void), SSLv3_client_method(void)
	   A TLS/SSL connection established with these methods will only understand the SSLv3 protocol. A client will send out SSLv3 client hello
	   messages and will indicate that it only understands SSLv3. A server will only understand SSLv3 client hello messages. This especially
	   means, that it will not understand SSLv2 client hello messages which are widely used for compatibility reasons, see SSLv23_*_method().

       TLSv1_method(void), TLSv1_server_method(void), TLSv1_client_method(void)
	   A TLS/SSL connection established with these methods will only understand the TLSv1 protocol. A client will send out TLSv1 client hello
	   messages and will indicate that it only understands TLSv1. A server will only understand TLSv1 client hello messages. This especially
	   means, that it will not understand SSLv2 client hello messages which are widely used for compatibility reasons, see SSLv23_*_method().
	   It will also not understand SSLv3 client hello messages.

       SSLv23_method(void), SSLv23_server_method(void), SSLv23_client_method(void)
	   A TLS/SSL connection established with these methods will understand the SSLv2, SSLv3, and TLSv1 protocol. A client will send out SSLv2
	   client hello messages and will indicate that it also understands SSLv3 and TLSv1. A server will understand SSLv2, SSLv3, and TLSv1
	   client hello messages. This is the best choice when compatibility is a concern.

       The list of protocols available can later be limited using the SSL_OP_NO_SSLv2, SSL_OP_NO_SSLv3, SSL_OP_NO_TLSv1 options of the
       SSL_CTX_set_options() or SSL_set_options() functions. Using these options it is possible to choose e.g. SSLv23_server_method() and be able
       to negotiate with all possible clients, but to only allow newer protocols like SSLv3 or TLSv1.

       SSL_CTX_new() initializes the list of ciphers, the session cache setting, the callbacks, the keys and certificates, and the options to its
       default values.

RETURN VALUES

       The following return values can occur:

       NULL
	   The creation of a new SSL_CTX object failed. Check the error stack to find out the reason.

       Pointer to an SSL_CTX object
	   The return value points to an allocated SSL_CTX object.

SEE ALSO

       SSL_CTX_free(3), SSL_accept(3), ssl(3),	SSL_set_connect_state(3)

1.0.1e								    2013-02-11							 SSL_CTX_new(3SSL)
All times are GMT -4. The time now is 09:21 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy