Uploaded image for project: 'Jira Server and Data Center'
  1. Jira Server and Data Center
  2. JRASERVER-41685

Disable SSLv3 in the commented out TLS tomcat configuration

    XMLWordPrintable

Details

    Description

      We can document how users can enable SSLv3 but we should disable SSLv3 in the commented out tomcat TLS configuration, so as to prevent customers being vulnerable to POODLE.

      Attachments

        Issue Links

          is superseded by

          Suggestion - JRASERVER-42347 Update embedded Tomcat to 7.0.58+

          • Closed
          relates to

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-35386 SSLv3 Is Not Disabled When sslProtocol is Set to TLS, Vulnerable to POODLE

          • Medium - Medium priority issues
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. JRASERVER-40627 After disable SSL 3.0 (cause of Poodle) Jira doesn't work

          • Medium - Medium priority issues
          • Closed
          is related to

          BDEV-8321 Loading...

          Activity

            People

              Unassigned Unassigned
              dblack David Black
              Votes:
              1 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: