Skip to content

Instantly share code, notes, and snippets.

@sdorra

sdorra/server-config-v1.xml

Created October 18, 2014 12:10
Show Gist options
  • Save sdorra/2e74715f7eff5d92a6eb to your computer and use it in GitHub Desktop.
Save sdorra/2e74715f7eff5d92a6eb to your computer and use it in GitHub Desktop.
Download ZIP
SCM-Manager and the POODLE vulnerability
Raw
server-config-v1.xml
<Arg>
<New class="org.eclipse.jetty.http.ssl.SslContextFactory">
<Set name="excludeProtocols">
<Array type="java.lang.String">
<Item>SSLv2Hello</Item>
<Item>SSLv3</Item>
</Array>
</Set>
</New>
</Arg>
Raw
server-config-v2.xml
<Call name="addConnector">
<Arg>
<New class="org.eclipse.jetty.server.ssl.SslSelectChannelConnector">
<Arg>
<New class="org.eclipse.jetty.http.ssl.SslContextFactory">
<Set name="excludeProtocols">
<Array type="java.lang.String">
<Item>SSLv2Hello</Item>
<Item>SSLv3</Item>
</Array>
</Set>
</New>
</Arg>
<Set name="Port">8181</Set>
<Set name="maxIdleTime">30000</Set>
<Set name="requestHeaderSize">16384</Set>
<Set name="keystore"><SystemProperty name="basedir" default="." />/conf/keystore.jks</Set>
<Set name="password">yourpassword</Set>
<Set name="keyPassword">yourpassword</Set>
<Set name="truststore"><SystemProperty name="basedir" default="." />/conf/keystore.jks</Set>
<Set name="trustPassword">yourpassword</Set>
</New>
</Arg>
</Call>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment