[prev in list] [next in list] [prev in thread] [next in thread] 

List:       activemq-dev
Subject:    [jira] Updated: (AMQ-2384) The activeMQ port supports low and
From:       "Phil Pickett (JIRA)" <jira () apache ! org>
Date:       2010-03-30 17:27:08
Message-ID: 1903827071.7151269970028455.JavaMail.jira () brutus ! apache ! org
[Download RAW message or body]


     [ https://issues.apache.org/activemq/browse/AMQ-2384?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel \
]

Phil Pickett updated AMQ-2384:
------------------------------

    Attachment: SSLEnableCiphers.patch

ActiveMQ 5.3 based patch to implement transport's enabledCipherSuites option

> The activeMQ port supports low and medium strength ciphers 
> -----------------------------------------------------------
> 
> Key: AMQ-2384
> URL: https://issues.apache.org/activemq/browse/AMQ-2384
> Project: ActiveMQ
> Issue Type: Bug
> Components: Connector
> Affects Versions: 5.2.0
> Environment: We are running the ActiveMQ 5.2.0  over a SLES 11 64 bit  machine. In \
> the configuration file activemq.xml there is no way to specify the supported \
>                 ciphers. 
> Reporter: Shrisha Chandrashekar
> Fix For: 5.4.0
> 
> Attachments: setSslSocketOptions.patch, SSLEnableCiphers.patch
> 
> 
> On running a Tenable nessus scan against the machine where ActiveMQ is running, we \
> see that the port 61616 , the TCP connector port accepts Low and Medium strength \
> ciphers by default. This may be a security risk and therefore we need a way to \
> specify which ciphers to support.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


[prev in list] [next in list] [prev in thread] [next in thread]