[jboss-jira] [JBoss JIRA] (AS7-5501) provide means to specify allowed ciphers for management https or change default to exclude weak ciphers
R Stokoe (JIRA)
jira-events at lists.jboss.org
Thu Sep 6 17:17:32 EDT 2012
[ https://issues.jboss.org/browse/AS7-5501?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
R Stokoe updated AS7-5501:
--------------------------
Summary: provide means to specify allowed ciphers for management https or change default to exclude weak ciphers (was: AS7 allows use of weak ciphers for management console https)
Description: AS7 allows use of weak ciphers for management console httpsThis is a security vulnerability. (was: This is a security vulnerability.
Default accepted ciphers should be stronger or method should be provided to specify allowed ciphers as with the web subsystem.)
Forum Reference: https://community.jboss.org/message/734360#734360 (was: https://community.jboss.org/message/734360#734360)
> provide means to specify allowed ciphers for management https or change default to exclude weak ciphers
> -------------------------------------------------------------------------------------------------------
>
> Key: AS7-5501
> URL: https://issues.jboss.org/browse/AS7-5501
> Project: Application Server 7
> Issue Type: Feature Request
> Components: Security
> Affects Versions: 7.1.2.Final (EAP)
> Reporter: R Stokoe
> Assignee: Darran Lofthouse
>
> AS7 allows use of weak ciphers for management console httpsThis is a security vulnerability.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list