Re: [JBoss-user] [ALERT] JSSE has a bug...

[Jim Crossley]

Greg Wilkins <[EMAIL PROTECTED]> writes:

> A security problem has been found in JSSE (the reference implementation
> of SSL from Sun).
>
> Replace the jsse.jar, jnet.jar and jcert.jar  files in the
> $JBOSS_HOME/server/*/lib  directories.

Will this be a problem on J2SE 1.4.1?  Won't the jars from the JDK/JRE
be picked up before the ones distributed with JBoss?

Thanks,
Jim


---
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
___
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user

[JBoss-user] [ALERT] JSSE has a bug...

[Greg Wilkins]

A security problem has been found in JSSE (the reference implementation
of SSL from Sun).

If you are using the default SSL libraries then you should upgrade JSSE
immediately.  This will effect both Jetty and Tomcat users.

Replace the jsse.jar, jnet.jar and jcert.jar  files in the
$JBOSS_HOME/server/*/lib  directories.



regards


 Original Message 
From: Pier Fumagalli <[EMAIL PROTECTED]>



If you are using JSSE for HTTPS support and stuff, make sure you check out
the link above and upgrade _NOW_...

 Pier

For the latest information about Jetty, please see http://jetty.mortbay.org

To alter your subscription to this list goto http://groups.yahoo.com/group/jetty-discuss

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/


--
Greg Wilkins<[EMAIL PROTECTED]> Phone/fax: +44 7092063462
Mort Bay Consulting Australia and UK.  http://www.mortbay.com




---
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
___
JBoss-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jboss-user