1153742 – Disable SSLv3 in candlepins tomcat configuration.

Bug 1153742 - Disable SSLv3 in candlepins tomcat configuration.

Summary: Disable SSLv3 in candlepins tomcat configuration.

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Subscription Asset Manager
Classification:	Retired
Component:	candlepin
Sub Component:
Version:	Nightly
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	high
Target Milestone:	rc
Target Release:	---
Assignee:	Katello Bug Bin
QA Contact:	SAM QE List
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1153815
TreeView+	depends on / blocked

Reported:	2014-10-16 17:02 UTC by Adrian Likins
Modified:	2020-08-13 08:10 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Clone Of:
Clones:	1153815 (view as bug list)
Environment:
Last Closed:	2017-06-26 20:39:52 UTC
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Knowledge Base (Solution)	1274933	0	None	None	None	Never

Description Adrian Likins 2014-10-16 17:02:34 UTC

Description of problem:
Change the default tomcat server.xml to only support
TLSv1.2,TLSv1.1, TLSv1 and to skip SSLv3 to mitigate
poodle SSLv3 attack (CVE-2014-3566)

Comment 1 Bryan Kearney 2017-06-26 20:39:52 UTC

The release of Satellite 5.8 we are deprecating the support of Subscription Asset Manager. The release notes for 5.8 can be found at https://access.redhat.com/documentation/en-us/red_hat_satellite/5.8/pdf/release_notes/Red_Hat_Satellite-5.8-Release_Notes-en-US.pdf.

I am therefore closing out this bug as WONTFIX. If you believe this to be an error, please feel free tor each out to either Rich Jerrido or Bryan Kearney. Thank you!

Note You need to log in before you can comment on or make changes to this bug.