[
https://issues.apache.org/activemq/browse/AMQ-2384?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=58455#action_58455
]
Gary Tully commented on AMQ-2384:
---------------------------------
Phil, recall that I never got this patch to work completely, I got some weird
permissions errors. The main bit of the patch was to allow lists to be set as
properties. It may need some more work and some more tests. It was only
intended as place holder for a 'good start' to a solution.
Gary.
> The activeMQ port supports low and medium strength ciphers
> -----------------------------------------------------------
>
> Key: AMQ-2384
> URL: https://issues.apache.org/activemq/browse/AMQ-2384
> Project: ActiveMQ
> Issue Type: Bug
> Components: Connector
> Affects Versions: 5.2.0
> Environment: We are running the ActiveMQ 5.2.0 over a SLES 11 64 bit
> machine. In the configuration file activemq.xml there is no way to specify
> the supported ciphers.
> Reporter: Shrisha Chandrashekar
> Fix For: 5.4.0
>
> Attachments: setSslSocketOptions.patch
>
>
> On running a Tenable nessus scan against the machine where ActiveMQ is
> running, we see that the port 61616 , the TCP connector port accepts Low and
> Medium strength ciphers by default. This may be a security risk and therefore
> we need a way to specify which ciphers to support.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
