AnsweredAssumed Answered

SSLv3.0/TLSv1.0 Protocol Weak CBC Mode Vulnerability for JBoss 7

Question asked by alexsooon on Apr 7, 2014

Tried the SSLHonorCipherOrder On
SSLCipherSuite RC4-SHA:HIGH:!ADH in the JBoss 7 configuration file instead of upgrading to TLS 1.1+, and

it failed Qualys scan. Need help with the configuration.

Outcomes