- Community Home
- >
- Servers and Operating Systems
- >
- HPE ProLiant
- >
- Server Management - Systems Insight Manager
- >
- Weak SSL ciphers
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-15-2007 09:46 AM
тАО11-15-2007 09:46 AM
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-16-2007 04:36 AM
тАО11-16-2007 04:36 AM
Re: Weak SSL ciphers
Dan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-16-2007 07:30 AM
тАО11-16-2007 07:30 AM
Re: Weak SSL ciphers
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-16-2007 07:39 AM
тАО11-16-2007 07:39 AM
Re: Weak SSL ciphers
http://www.docs.hp.com/en/418811-002/ch01s08.html
PS:Don't ferget to apply you re points,there situated next to every message date and time as UNASSIGNED.
Dan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-16-2007 10:01 AM
тАО11-16-2007 10:01 AM
Re: Weak SSL ciphers
Regarding points, which is better, low or high?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-19-2007 01:18 AM
тАО11-19-2007 01:18 AM
Re: Weak SSL ciphers
Dan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-19-2007 01:35 AM
тАО11-19-2007 01:35 AM
Re: Weak SSL ciphers
it could be weak cypher at the level of the web server,but at least it got one ;),between the server insight and it client majorite don't use securite.
http://support.microsoft.com/kb/324261/en-us
i configure a template and applied it every where.
Sorry can't help you if you get a final solution it would great if informe every body here,it will great.
Thank you and have a nice day.
Daniel
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-19-2007 07:32 AM
тАО11-19-2007 07:32 AM
SolutionI believe the file you are looking for is:
C:\Program Files\HP\Systems Insight Manager\jboss\server\hpsim\deploy\jbossweb-tomcat50.sar\server.xml.
In this file, there are 3 connectors defined for ports 50000, 50001 and 50002.
The last variable in each connector line is 'sslProtocol="XXX".
Here is a link to Apache Tomcat 5.5 and the SSL settings for it.
http://tomcat.apache.org/tomcat-5.5-doc/ssl-howto.html
I can't tell you if simply defining a stronger sslProtcol will do what you want, since I am not willing to break my SIM installation trying. :)
Also, I suspect any changes you make to this file will get overwritten during upgrades, etc..
Good luck.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-19-2007 10:03 AM
тАО11-19-2007 10:03 AM
Re: Weak SSL ciphers
Our security team would like to prevent insight manager from using SSLv2. I can't imagine just changing the ssl protocol from TLS to SSL would accomplish that. I tried specifying SSLv3, but that prevented insight manager from working. I also tried adding ciphers="blah,blah" where blah and blah equal different SSLv3 ciphers. Again, it just prevented insight manager from loading.
At this point, I've probably wasted too much time on this. Unless someone posts something spectacularly insightful, I'm calling this a lost cause.
Thanks for your help.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-15-2008 08:38 PM
тАО09-15-2008 08:38 PM
Re: Weak SSL ciphers
I added the ciphers field and value pair as follows:
ciphers="SSL_RSA_WITH_RC4_128_MD5"
to the line:
You can add additional ciphers but I was happy to go with one I knew was available on all admin workstations.