They did that just last year. All of the SSL backend was updated. They removed RC4, updated OpenSSL etc etc. See http://www.dell.com/support/home/us/en/19/drivers/driversdetails?driverId=9GJYW
On Thu, May 10, 2018 at 12:56 PM, Stephen John Smoogen <smo...@gmail.com> wrote: > On 10 May 2018 at 12:31, R S <rene.shus...@bcsemail.org> wrote: > > Smoogen, I just tested commenting out "jdk.jar.disabledAlgorithms" and > > connecting to the iDRAC Remote Console now works on Java 8 Update 162. > > > > Depending on your distro the path to the java.security file might be > > different from /usr/lib/jvm/java-openjdk/jre/lib/security/java.security > > I'm running a Debian derivate and it symlinks from > > /usr/lib/jvm/java-8-openjdk-amd64/jre/lib/security to > > /etc/java-8-openjdk/security > > > > So the ball is back to Dell. The compromising elements that the iDRAC6 > still > > relies on is either a 1024 certificate key, MD5 or MD2. > > > > I don't know what the support cycle for the iDRAC6 is since it is > based off of 10+ year old technology. I expect it would take a major > update to getting a newer openssl and other software and the CPU is > probably going to be even slower dealing with sha256, 4096 bit keys > and AES256 encryption. > > > > -- > Stephen J Smoogen. > -- Tech III * AppControl * Endpoint Protection * Server Maintenance Buncombe County Schools Technology Department Network Group ComicSans Awareness Campaign <http://comicsanscriminal.com>
_______________________________________________ Linux-PowerEdge mailing list Linux-PowerEdge@dell.com https://lists.us.dell.com/mailman/listinfo/linux-poweredge
