[
https://issues.apache.org/jira/browse/DERBY-6764?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14188622#comment-14188622
]
Mamta A. Satoor commented on DERBY-6764:
----------------------------------------
I ran the Java program with multiple JVMs and following is the result of those
runs
IBM jvms
*************************************
java version "1.5.0"
Java(TM) 2 Runtime Environment, Standard Edition (build pwi32devifx-20140415
(SR16 FP6 ))
IBM J9 VM (build 2.3, J2RE 1.5.0 IBM J9 2.3 Windows 7 x86-32
j9vmwi3223ifx-20140401 (JIT enabled)
J9VM - 20140326_194053_lHdSMr
JIT - 20130920_46470ifx1_r8
GC - 20120911_AA)
JCL - 20140415
Supported protocols are
SSLv3
TLS
TLSv1
SSL
SSL_TLS
Enabled protocols are
SSLv3
TLS
TLSv1
SSL
SSL_TLS
This enabled protocols list should not have SSLv3
TLS
TLSv1
SSLv3
SSL
SSL_TLS
*************************************
java version "1.6.0"
Java(TM) SE Runtime Environment (build pwi3260sr16-20140418_01(SR16))
IBM J9 VM (build 2.4, JRE 1.6.0 IBM J9 2.4 Windows 7 x86-32
jvmwi3260sr16-20140416_196573 (JIT enabled, AOT enabled)
J9VM - 20140416_196573
JIT - r9_20130920_46510ifx5
GC - GA24_Java6_SR16_20140416_1614_B196573)
JCL - 20140406_01
Supported protocols are
SSLv3
TLSv1
TLSv1.1
TLSv1.2
Enabled protocols are
SSLv3
TLSv1
This enabled protocols list should not have SSLv3
TLSv1
*************************************
java version "1.7.0"
Java(TM) SE Runtime Environment (build pwi3270sr7-20140410_01(SR7))
IBM J9 VM (build 2.6, JRE 1.7.0 Windows 7 x86-32 20140409_195732 (JIT enabled,
AOT enabled)
J9VM - R26_Java726_SR7_20140409_1418_B195732
JIT - r11.b06_20140409_61252
GC - R26_Java726_SR7_20140409_1418_B195732
J9CL - 20140409_195732)
JCL - 20140409_01 based on Oracle 7u55-b13
Supported protocols are
SSLv3
TLSv1
TLSv1.1
TLSv1.2
Enabled protocols are
SSLv3
TLSv1
TLSv1.1
TLSv1.2
This enabled protocols list should not have SSLv3
TLSv1
TLSv1.1
TLSv1.2
Sun jvms
*************************************
java version "1.5.0_45"
Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_45-b05)
Java HotSpot(TM) Client VM (build 1.5.0_45-b05, mixed mode)
Supported protocols are
SSLv2Hello
SSLv3
TLSv1
Enabled protocols are
SSLv2Hello
SSLv3
TLSv1
This enabled protocols list should not have SSLv3
SSLv2Hello
TLSv1
*************************************
java version "1.6.0_45"
Java(TM) SE Runtime Environment (build 1.6.0_45-b06)
Java HotSpot(TM) Client VM (build 20.45-b01, mixed mode)
Supported protocols are
SSLv2Hello
SSLv3
TLSv1
Enabled protocols are
SSLv2Hello
SSLv3
TLSv1
This enabled protocols list should not have SSLv3
SSLv2Hello
TLSv1
*************************************
java version "1.7.0_21"
Java(TM) SE Runtime Environment (build 1.7.0_21-b11)
Java HotSpot(TM) Client VM (build 23.21-b01, mixed mode)
Supported protocols are
SSLv2Hello
SSLv3
TLSv1
TLSv1.1
TLSv1.2
Enabled protocols are
SSLv2Hello
SSLv3
TLSv1
TLSv1.1
TLSv1.2
This enabled protocols list should not have SSLv3
SSLv2Hello
TLSv1
TLSv1.1
TLSv1.2
*************************************
java version "1.8.0_20"
Java(TM) SE Runtime Environment (build 1.8.0_20-b26)
Java HotSpot(TM) Client VM (build 25.20-b23, mixed mode)
Supported protocols are
SSLv2Hello
SSLv3
TLSv1
TLSv1.1
TLSv1.2
Enabled protocols are
SSLv2Hello
SSLv3
TLSv1
TLSv1.1
TLSv1.2
This enabled protocols list should not have SSLv3
SSLv2Hello
TLSv1
TLSv1.1
TLSv1.2
> analyze impact of poodle security alert on Derby client - server ssl support
> ----------------------------------------------------------------------------
>
> Key: DERBY-6764
> URL: https://issues.apache.org/jira/browse/DERBY-6764
> Project: Derby
> Issue Type: Task
> Reporter: Myrna van Lunteren
> Assignee: Mamta A. Satoor
>
> Recently, a security weakness was found in SSLv3, POODLE: SSLv3 vulnerability
> (CVE-2014-3566)
> Derby supports ssl between the client and network server.
> We should investigate this and decide if we need to change our product, e.g.
> to eliminate support for SSL in favor of its successor TLS.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
