svn commit: r1636867 - in /ofbiz/branches/release12.04/framework/base/config: both-containers.xml ofbiz-containers.xml test-containers.xml

Wed, 05 Nov 2014 05:14:12 -0800 

Author: jleroux
Date: Wed Nov  5 13:12:46 2014
New Revision: 1636867

URL: http://svn.apache.org/r1636867
Log:
Fixes the Poodle vulnerability following indications from "The Poodle fixer" at 
https://issues.apache.org/jira/browse/OFBIZ-5848

We will certainly have to evolve this in the future because this correction 
forces the protocol to TLSv1.2

Modified:
    ofbiz/branches/release12.04/framework/base/config/both-containers.xml
    ofbiz/branches/release12.04/framework/base/config/ofbiz-containers.xml
    ofbiz/branches/release12.04/framework/base/config/test-containers.xml

Modified: ofbiz/branches/release12.04/framework/base/config/both-containers.xml
URL: 
http://svn.apache.org/viewvc/ofbiz/branches/release12.04/framework/base/config/both-containers.xml?rev=1636867&r1=1636866&r2=1636867&view=diff
==============================================================================
--- ofbiz/branches/release12.04/framework/base/config/both-containers.xml 
(original)
+++ ofbiz/branches/release12.04/framework/base/config/both-containers.xml Wed 
Nov  5 13:12:46 2014
@@ -246,7 +246,8 @@ under the License.
             <property name="keystoreFile" 
value="framework/base/config/ofbizssl.jks"/>
             <property name="keystorePass" value="changeit"/>
             <property name="keystoreType" value="JKS"/>
-            <property name="sslProtocol" value="TLS"/>
+            <property name="sslProtocol" value="TLSv1.2"/>
+            <property name="sslEnabledProtocols" value="TLSv1.2"/>
             <property name="ciphers" value=""/>
         </property>
     </container>

Modified: ofbiz/branches/release12.04/framework/base/config/ofbiz-containers.xml
URL: 
http://svn.apache.org/viewvc/ofbiz/branches/release12.04/framework/base/config/ofbiz-containers.xml?rev=1636867&r1=1636866&r2=1636867&view=diff
==============================================================================
--- ofbiz/branches/release12.04/framework/base/config/ofbiz-containers.xml 
(original)
+++ ofbiz/branches/release12.04/framework/base/config/ofbiz-containers.xml Wed 
Nov  5 13:12:46 2014
@@ -243,7 +243,8 @@ under the License.
             <property name="keystoreFile" 
value="framework/base/config/ofbizssl.jks"/>
             <property name="keystorePass" value="changeit"/>
             <property name="keystoreType" value="JKS"/>
-            <property name="sslProtocol" value="TLS"/>
+            <property name="sslProtocol" value="TLSv1.2"/>
+            <property name="sslEnabledProtocols" value="TLSv1.2"/>
             <property name="ciphers" value=""/>
         </property>
     </container>

Modified: ofbiz/branches/release12.04/framework/base/config/test-containers.xml
URL: 
http://svn.apache.org/viewvc/ofbiz/branches/release12.04/framework/base/config/test-containers.xml?rev=1636867&r1=1636866&r2=1636867&view=diff
==============================================================================
--- ofbiz/branches/release12.04/framework/base/config/test-containers.xml 
(original)
+++ ofbiz/branches/release12.04/framework/base/config/test-containers.xml Wed 
Nov  5 13:12:46 2014
@@ -215,7 +215,8 @@ under the License.
             <property name="keystoreFile" 
value="framework/base/config/ofbizssl.jks"/>
             <property name="keystorePass" value="changeit"/>
             <property name="keystoreType" value="JKS"/>
-            <property name="sslProtocol" value="TLS"/>
+            <property name="sslProtocol" value="TLSv1.2"/>
+            <property name="sslEnabledProtocols" value="TLSv1.2"/>
             <property name="ciphers" value=""/>
         </property>
     </container>

Reply via email to