[
https://issues.apache.org/jira/browse/DIRSERVER-2020?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14215465#comment-14215465
]
Emmanuel Lecharny commented on DIRSERVER-2020:
----------------------------------------------
I'll going to test a patch in MINA (this is the framework we are depending on
for the network layer) to see if I can only enable TLS V1.
It could take a couple of days to get it tests, as I need to build a new MINA
version, then a new ApacheDS version, and I'm currently in a conference. If
that fixes the issue, I'll try to cut a new urgent release (ie, it won't
require 72h to get it out).
> Poodle remediation for ApacheDS 2.X
> -----------------------------------
>
> Key: DIRSERVER-2020
> URL: https://issues.apache.org/jira/browse/DIRSERVER-2020
> Project: Directory ApacheDS
> Issue Type: Task
> Components: ldap
> Affects Versions: 2.0.0-M10
> Environment: Production
> Reporter: RakeshAcharya
> Priority: Critical
> Labels: patch
>
> How do we disable SSlv3 protocol for apache DS 2.X ?
> As part of poodle remediation we need to disable SSL v3 ASAP in production
> boxes as the scan showed its vulnerable.
> I cant find any configuration pertaining to the same which I could change .
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
