[jboss-user] [Installation, Configuration & DEPLOYMENT] - JBoss 4.2.0 SSL Weak Cipher Suites Supported
thermo144
do-not-reply at jboss.com
Wed Mar 11 10:26:17 EDT 2009
Hello,
I have not had a ton of experience with JBoss and was recently scanning one of our new machines with Nessus and received the "SSL Weak Cipher Suites Supported" vulnerability. I found this website (http://blog.techstacks.com/2008/09/securing-ssl-in-tomcat-part-two.html#comment-form) that seems to explain a fix for Tomcat that I was hoping was the same for JBoss but I cant seem to find any file named server.xml related with JBoss. Does anyone know how to disable the weak ciphers in JBoss or could you point me in the right direction to a solution?
Thanks!
View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4216975#4216975
Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4216975
More information about the jboss-user
mailing list