You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@ofbiz.apache.org by jl...@apache.org on 2014/11/05 14:12:06 UTC

svn commit: r1636866 - in /ofbiz/branches/release13.07: ./ framework/catalina/ofbiz-component.xml

Author: jleroux
Date: Wed Nov  5 13:12:06 2014
New Revision: 1636866

URL: http://svn.apache.org/r1636866
Log:
"Applied fix from trunk for revision: 1636864" (conflict handled by hand)
------------------------------------------------------------------------
r1636864 | jleroux | 2014-11-05 14:06:19 +0100 (mer. 05 nov. 2014) | 3 lignes

Fixes the Poodle vulnerability following indications from "The Poodle fixer" at https://issues.apache.org/jira/browse/OFBIZ-5848

We will certainly have to evolve this in the future because this correction forces the protocol to TLSv1.2
------------------------------------------------------------------------


Modified:
    ofbiz/branches/release13.07/   (props changed)
    ofbiz/branches/release13.07/framework/catalina/ofbiz-component.xml

Propchange: ofbiz/branches/release13.07/
------------------------------------------------------------------------------
  Merged /ofbiz/trunk:r1636864

Modified: ofbiz/branches/release13.07/framework/catalina/ofbiz-component.xml
URL: http://svn.apache.org/viewvc/ofbiz/branches/release13.07/framework/catalina/ofbiz-component.xml?rev=1636866&r1=1636865&r2=1636866&view=diff
==============================================================================
--- ofbiz/branches/release13.07/framework/catalina/ofbiz-component.xml (original)
+++ ofbiz/branches/release13.07/framework/catalina/ofbiz-component.xml Wed Nov  5 13:12:06 2014
@@ -182,7 +182,8 @@ under the License.
             <property name="keystoreFile" value="framework/base/config/ofbizssl.jks"/>
             <property name="keystorePass" value="changeit"/>
             <property name="keystoreType" value="JKS"/>
-            <property name="sslProtocol" value="TLS"/>
+            <property name="sslProtocol" value="TLSv1.2"/>
+            <property name="sslEnabledProtocols" value="TLSv1.2"/>
             <property name="ciphers" value=""/>
         </property>
     </container>
@@ -337,7 +338,8 @@ under the License.
             <property name="keystoreFile" value="framework/base/config/ofbizssl.jks"/>
             <property name="keystorePass" value="changeit"/>
             <property name="keystoreType" value="JKS"/>
-            <property name="sslProtocol" value="TLS"/>
+            <property name="sslProtocol" value="TLSv1.2"/>
+            <property name="sslEnabledProtocols" value="TLSv1.2"/>
             <property name="ciphers" value=""/>
         </property>
     </container>