4:13 p.m.
R Stokoe created AS7-5501:
-----------------------------
Summary: AS7 allows use of weak ciphers for management console https
Key: AS7-5501
URL: https://issues.jboss.org/browse/AS7-5501
Project: Application Server 7
Issue Type: Feature Request
Components: Security
Affects Versions: 7.1.2.Final (EAP)
Reporter: R Stokoe
Assignee: Anil Saldhana
This is a security vulnerability.
Default accepted ciphers should be stronger or method should be provided to specify
allowed ciphers as with the web subsystem.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
4:15 p.m.
[
https://issues.jboss.org/browse/AS7-5501?page=com.atlassian.jira.plugin.s...
]
Anil Saldhana reassigned AS7-5501:
----------------------------------
Assignee: Darran Lofthouse (was: Anil Saldhana)
AS7 allows use of weak ciphers for management console https
-----------------------------------------------------------
Key: AS7-5501
URL: https://issues.jboss.org/browse/AS7-5501
Project: Application Server 7
Issue Type: Feature Request
Components: Security
Affects Versions: 7.1.2.Final (EAP)
Reporter: R Stokoe
Assignee: Darran Lofthouse
This is a security vulnerability.
Default accepted ciphers should be stronger or method should be provided to specify
allowed ciphers as with the web subsystem.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
4:17 p.m.
New subject: [JBoss JIRA] (AS7-5501) provide means to specify allowed ciphers for management https or change default to exclude weak ciphers
[
https://issues.jboss.org/browse/AS7-5501?page=com.atlassian.jira.plugin.s...
]
R Stokoe updated AS7-5501:
--------------------------
Summary: provide means to specify allowed ciphers for management https or
change default to exclude weak ciphers (was: AS7 allows use of weak ciphers for
management console https)
Description: AS7 allows use of weak ciphers for management console httpsThis is a
security vulnerability. (was: This is a security vulnerability.
Default accepted ciphers should be stronger or method should be provided to specify
allowed ciphers as with the web subsystem.)
Forum Reference: https://community.jboss.org/message/734360#734360 (was:
https://community.jboss.org/message/734360#734360)
provide means to specify allowed ciphers for management https or
change default to exclude weak ciphers
-------------------------------------------------------------------------------------------------------
Key: AS7-5501
URL: https://issues.jboss.org/browse/AS7-5501
Project: Application Server 7
Issue Type: Feature Request
Components: Security
Affects Versions: 7.1.2.Final (EAP)
Reporter: R Stokoe
Assignee: Darran Lofthouse
AS7 allows use of weak ciphers for management console httpsThis is a security
vulnerability.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
5:16 a.m.
New subject: [JBoss JIRA] (AS7-5501) provide means to specify allowed ciphers for management https or change default to exclude weak ciphers
[
https://issues.jboss.org/browse/AS7-5501?page=com.atlassian.jira.plugin.s...
]
Darran Lofthouse updated AS7-5501:
----------------------------------
Fix Version/s: 7.2.0.Alpha1
Description: Provide means to specify allowed ciphers for management https. (was:
AS7 allows use of weak ciphers for management console httpsThis is a security
vulnerability.)
Component/s: Domain Management
Forum Reference: https://community.jboss.org/message/734360#734360 (was:
https://community.jboss.org/message/734360#734360)
provide means to specify allowed ciphers for management https or
change default to exclude weak ciphers
-------------------------------------------------------------------------------------------------------
Key: AS7-5501
URL: https://issues.jboss.org/browse/AS7-5501
Project: Application Server 7
Issue Type: Feature Request
Components: Domain Management, Security
Affects Versions: 7.1.2.Final (EAP)
Reporter: R Stokoe
Assignee: Darran Lofthouse
Fix For: 7.2.0.Alpha1
Provide means to specify allowed ciphers for management https.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
12:24 p.m.
New subject: [JBoss JIRA] (AS7-5501) provide means to specify allowed ciphers for management https or change default to exclude weak ciphers
[
https://issues.jboss.org/browse/AS7-5501?page=com.atlassian.jira.plugin.s...
]
Darran Lofthouse updated AS7-5501:
----------------------------------
Fix Version/s: 7.3.0.Alpha1
(was: 7.2.0.Alpha1)
provide means to specify allowed ciphers for management https or
change default to exclude weak ciphers
-------------------------------------------------------------------------------------------------------
Key: AS7-5501
URL: https://issues.jboss.org/browse/AS7-5501
Project: Application Server 7
Issue Type: Feature Request
Components: Domain Management, Security
Affects Versions: 7.1.2.Final (EAP)
Reporter: R Stokoe
Assignee: Darran Lofthouse
Fix For: 7.3.0.Alpha1
Provide means to specify allowed ciphers for management https.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
4417
days inactive
4495
days old
4 comments
3 participants
participants (3)
-
Anil Saldhana (JIRA) -
Darran Lofthouse (JIRA)
-
R Stokoe (JIRA)