git commit: OOZIE-2034 Disable SSLv3 (POODLEbleed vulnerability) (rkanter)

Fri, 24 Oct 2014 10:49:58 -0700 

Repository: oozie
Updated Branches:
  refs/heads/branch-4.1 cb3e5653b -> 9280bbb63


OOZIE-2034 Disable SSLv3 (POODLEbleed vulnerability) (rkanter)


Project: http://git-wip-us.apache.org/repos/asf/oozie/repo
Commit: http://git-wip-us.apache.org/repos/asf/oozie/commit/9280bbb6
Tree: http://git-wip-us.apache.org/repos/asf/oozie/tree/9280bbb6
Diff: http://git-wip-us.apache.org/repos/asf/oozie/diff/9280bbb6

Branch: refs/heads/branch-4.1
Commit: 9280bbb636cb781f11fd1fda16d281ebcbef629e
Parents: cb3e565
Author: Robert Kanter <[email protected]>
Authored: Fri Oct 24 10:48:21 2014 -0700
Committer: Robert Kanter <[email protected]>
Committed: Fri Oct 24 10:48:21 2014 -0700

----------------------------------------------------------------------
 distro/src/main/tomcat/ssl-server.xml | 2 +-
 release-log.txt                       | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/oozie/blob/9280bbb6/distro/src/main/tomcat/ssl-server.xml
----------------------------------------------------------------------
diff --git a/distro/src/main/tomcat/ssl-server.xml 
b/distro/src/main/tomcat/ssl-server.xml
index 3b87f3f..94ed0e5 100644
--- a/distro/src/main/tomcat/ssl-server.xml
+++ b/distro/src/main/tomcat/ssl-server.xml
@@ -84,7 +84,7 @@
 
     <Connector port="${oozie.https.port}" protocol="HTTP/1.1" SSLEnabled="true"
                maxThreads="150" scheme="https" secure="true"
-               clientAuth="false" sslProtocol="TLS"
+               clientAuth="false" sslEnabledProtocols="TLSv1"
                keystoreFile="${oozie.https.keystore.file}"
                keystorePass="${oozie.https.keystore.pass}" />
 

http://git-wip-us.apache.org/repos/asf/oozie/blob/9280bbb6/release-log.txt
----------------------------------------------------------------------
diff --git a/release-log.txt b/release-log.txt
index 0890ae8..bd9167c 100644
--- a/release-log.txt
+++ b/release-log.txt
@@ -1,5 +1,6 @@
 -- Oozie 4.1.0 release (4.1 - unreleased)
 
+OOZIE-2034 Disable SSLv3 (POODLEbleed vulnerability) (rkanter)
 OOZIE-1914 CLI should retry on timeout (puru)
 OOZIE-1973 ConcurrentModificationException in Sharelib service (puru)
 OOZIE-1896 ZKUUIDService - Too many job submission fails (puru)

Reply via email to