Level 4

GraniteSslConnectorFactory AEM 6.3

Forum|Forum|8 years ago
January 17, 2018
2 replies
3435 views

Hi All,

need some info on com.adobe.granite.jetty.ssl.internal.GraniteSslConnectorFactory??

has any one got this "Bleichenbacher Oracle (ROBOT) Vulnerability ", If yes then how does this effect AEM??

The fix we got is to disable any ciphers that begin with TLS_RSA on all the instances.

I see by default we get four cipher entries starting with TLS_RSA*, disabling it an better idea.

Thanks,

Vikii

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

kautuk_sahni

Community Manager

Jörg Hoh Can you help here?

Kautuk Sahni

joerghoh

Adobe Employee

If it's security related, I would recommend to raise a ticket with Adobe support and let it confirm.

This vulnerability is related to a TLS cipher which is vulnerable. You can enable or disable specifc cipher suites in the OSGI config of Jetty (see the fields "Included cipher suites" and "Excluded cipher suites"). You should be able to disable the affected cipher suite here.

Jörg

M

Mahesh_VikramAuthor

Level 4

Hi Jorg,

We have disabled all the cipher sites starting with TLS_RSA*.

I have two questions here.

1, What are this cipher suites?

2, Disabling TLS_RSA*, will this effect anything?

Thanks,

viki

joerghoh

Adobe Employee

This is not specific for AEM and not even specific for Java, but a very broad concept. Check wikipedia for it[1].

[1] Cipher suite - Wikipedia

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded