Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

alfresco CE 5.0.b - vti server jetty ( sharepoint) disable sslv3

csyeow
Champ in-the-making
Champ in-the-making

‎12-16-2014 02:43 AM

hi ..

env:

os = centos 6.5
alfresco = 5.0.b
vti server (jetty ) sharepoint = running in https port 7070



do any one know how to disable sslv3 (  POODLE SSLv3 Protocol CBC ciphers Information Disclosure Vulnerability ) on vti server ( jetty ). currently running on https .


Vulnerability scanner detect as below , any solution to fix this . tq

1. POODLE SSLv3 Protocol CBC ciphers Information Disclosure Vulnerability  –> CVE:    CVE-2014-3566
2. Missing Secure Attribute SSL Cookie Information Disclosure Vulnerability –> Workaround: Set the 'secure' attribute for any cookies that are sent over an SSL connection. how to set ?

3. Check for SSL Weak Ciphers –> how to change to strong ssl ciphers
Weak ciphers offered by this service:
  SSL3_RSA_RC4_128_MD5
  SSL3_RSA_RC4_128_SHA
  SSL3_ECDHE_RSA_WITH_RC4_128_SHA
  TLS1_RSA_RC4_128_MD5
  TLS1_RSA_RC4_128_SHA
  TLS1_ECDHE_RSA_WITH_RC4_128_SHA

4. Missing httpOnly Cookie Attribute –>solution, Set the 'httpOnly' attribute for any session cookies. how?

hope some one able to help

tq ..
Labels:
0 Kudos
1 REPLY 1

csyeow
Champ in-the-making
Champ in-the-making

‎12-17-2014 04:38 AM

hi any one know how to add excludeCipherSuites & protocol–Default value is  "TLS" ( vti.server.xxx in alfresco-global.properties )

i find the guide https://wiki.eclipse.org/Jetty/Howto/Configure_SSL

hope some one can help/ advise on this issue..

tq



0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2026 Khoros, LLC