2 Replies Latest reply on Feb 6, 2012 4:20 AM by minige

How to mitigate Beast attack properly

minige Feb 6, 2012 3:24 AM

Hello,

Could anybody please point me on valid instruction about how to mitigate Beast TSL attack on Tomcat.

There are a lot of references on this issue over the internet but most dedicated to Apache.

I'm using JBossWeb bundled with JBoss 5.1.0.GA (with HttpConnector)

Thanks,

Mikhail

1. Re: How to mitigate Beast attack properly

jaikiran Feb 6, 2012 3:37 AM (in response to minige)

http://www.redhat.com/security/data/cve/CVE-2011-3389.html
Actions
2. Re: How to mitigate Beast attack properly

minige Feb 6, 2012 4:20 AM (in response to jaikiran)

Thanks for your response, Jaikiran.

Do I correct unredstand that problem is not in JBossWeb but in JDK, so I only need to update to most recent Oracle JDK?

Thanks,
Mikhail
Actions