SA540 FAILS PCIDSS security scan
Hi
We have recently installed an SA540 to replace an aging PIX firewall. The new firewall has failed a routine security scan for5 PCIDSS compliance. The problem appears to realate to the HTTPS service on the firewall which we need for SSL VPNs and remote management.
The reasons provided are:-
1. The remote service accepts connections encrypted using SSL 2.0, which reportedly suffers from several cryptographic flaws and has been deprecated for several years .
2. The remote service supports the use of weak SSL ciphers
3. The remote service supports the use of medium strength SSL ciphers
4. The remote service supports the use of anonymous SSL ciphers – presumably this can be fixed by purchasing an SSL certificate
Can you disable SSL2.0 and the weaker ciphers?
Hi Keith,
Can you please let us know what firmware version on SA500 you are using?
Thanks,
Nitin
Similar Messages
-
My PC fails security scan when downloading Adobe reader
My PC fails security scan when installing Adobe Reader
I have Windows 7. When I try to download anything like a PDF, Adobe reader or any external file, the process includes a security scan. It could be before the download or after it is complete, but at a point before download or before it can be opened, the the message says that it failed or failed the security scan.
I tried to troubleshoot Windows 7 and get as error message: 0x800B010E. It could it be related to the software download problem where I get message other than security failure or it won't load.
I have Windows 7 Enterprise, Version 6.1( Build 7601: Service Pack 1)
Ted McCarthy -
RV082 Failing Credit Card processing security scan
Hello,
I have an RV082 setup as the home unit for a small business VPN network and the unit is actuall in a town 30 miles from my office. I have the web interface setup so I can manage the VPN as well as open and close ports as required for remote desktop access to the facility. We have started processing credit cards with a new vendor and they do a quarterly security scan on the system. I have 2.0.0.19 firmware loaded on it. They failing my RV082 because it supports less than 128 bit on port 443.
Is there a way I can configure it to only accept 128 or 256 only?
I have never worked with the CLI on this unit just the GUI.
Thanks in advanceHello toddah
It would be very nice if I could access from different locations as I
never lknow where I will be (ip address) when I am needed to provide
assistance. I generally log into the firewall and open a RDT port to a
specific machine for the duration of the support session and then back
out and close the port. I was hoping there was some way configuration
wise I could upgrade or limit the encryption strength so I could pass
the test and keep things secure.
I see. You were using RDP ports to access your network, and this process is no longer perceived as PCI compliant. You are correct in that a VPN connection may work for you. Being that you have an RV082, you have 3 options to establish a VPN connection to your RV082's network:
1. IPSec Client - to - gateway, 2. Cisco Quick VPN, and 3. PPTP VPN. I am unsure as to which method will satisfy PCI compliance thoroughly.
will anyconnect work withthe RV082 as a VPN client?
I have not tested this, so I cannot state whether this will work. I can say that the RV082 allows IPSec VPN connections and works with clients that are built on Windows IPSec policies. In other words, this may work for you, but I would be unable to say for certain.
You can download the Cisco Quick VPN client from the Cisco.com Website.
I certainly hope this helps. -
I received an email that I now know to be malicious and inadvertently opened up the attachment on my IPad that I've been informed will download malware or a virus. Can my IPad be infected this way or does anyone know if there is a way of running a security scan to check if there is a problem? I do have the most up to date IOS software installed.
There is no anti-malware for iOS, at least none that actually does anything useful. The odds of getting any malware infection via an email attachment on an iOS device is quite low - practically non-existent. Unless you are seeing any issues, there isn't much to do, other than deleting the email and being more cautious in the future.
-
my itunes in pc fails to secure link with itunes store it shows the process bar it automatically quits the process it also does not shows any on the screen. i am using windows xp service pack 3. what shoul i do?
Diagnostics test
Microsoft Windows XP Professional Service Pack 3 (Build 2600)
ECS G31T-M7
iTunes 10.5.2.11
QuickTime 7.6.9
FairPlay 1.13.37
Apple Application Support 2.1.6
iPod Updater Library 10.0d2
CD Driver 2.2.0.1
CD Driver DLL 2.1.1.1
Apple Mobile Device 4.0.0.97
Apple Mobile Device Driver 1.57.0.0
Bonjour 3.0.0.10 (333.10)
Gracenote SDK 1.9.5.502
Gracenote MusicID 1.9.5.115
Gracenote Submit 1.9.5.143
Gracenote DSP 1.9.5.45
iTunes Serial Number 0012ABAC07F3CCB0
Current user is an administrator.
The current local date and time is 2011-12-31 14:06:21.
iTunes is not running in safe mode.
WebKit accelerated compositing is enabled.
HDCP is not supported.
Core Media is not supported. (16005)
Video Display Information
Intel(R) G33/G31 Express Chipset Family
**** External Plug-ins Information ****
No external plug-ins installed.
**** Network Connectivity Tests ****
Network Adapter Information
Adapter Name: {7599FAD1-1BB9-4AC6-80AF-404253DC519E}
Description: Atheros L2 Fast Ethernet 10/100 Base-T Controller - Packet Scheduler Miniport
IP Address: 192.168.1.5
Subnet Mask: 255.255.255.0
Default Gateway: 192.168.1.1
DHCP Enabled: Yes
DHCP Server: 192.168.1.1
Lease Obtained: Sat Dec 31 13:46:09 2011
Lease Expires: Tue Jan 03 13:46:09 2012
DNS Servers: 192.168.1.1
Active Connection: LAN Connection
Connected: Yes
Online: Yes
Using Modem: No
Using LAN: Yes
Using Proxy: No
SSL 3.0 Support: Enabled
TLS 1.0 Support: Enabled
Firewall Information
Windows Firewall is on.
iTunes is enabled in Windows Firewall.
Connection attempt to Apple web site was successful.
Connection attempt to browsing iTunes Store was successful.
Connection attempt to purchasing from iTunes Store was successful.
Connection attempt to iPhone activation server was unsuccessful.
The network connection timed out.
Connection attempt to firmware update server was unsuccessful.
The network connection timed out.
Connection attempt to Gracenote server was successful.
Last successful iTunes Store access was 2011-12-31 14:00:02.
**** Device Connectivity Tests ****
iPodService 10.5.2.11 is currently running.
iTunesHelper 10.5.2.11 is currently running.
Apple Mobile Device service 3.3.0.0 is currently running.
Universal Serial Bus Controllers:
Intel(R) 82801G (ICH7 Family) USB Universal Host Controller - 27C8. Device is working properly.
Intel(R) 82801G (ICH7 Family) USB Universal Host Controller - 27C9. Device is working properly.
Intel(R) 82801G (ICH7 Family) USB Universal Host Controller - 27CA. Device is working properly.
Intel(R) 82801G (ICH7 Family) USB Universal Host Controller - 27CB. Device is working properly.
Intel(R) 82801G (ICH7 Family) USB2 Enhanced Host Controller - 27CC. Device is working properly.
No FireWire (IEEE 1394) Host Controller found.
Connected Device Information:
rawkiss’s iPhone, iPhone 3G running firmware version 4.0
Serial Number: 86931UEAY7H
**** Device Sync Tests ****
Sync tests completed successfully.I have found a fix after doing additional research through this forum. Tech Note #328730 addresses this problem and it works for Photoshop Album 3.2 even though it was written for release 1.0.
Here is a link that will take you directly to the Tech Note:
http://kb.adobe.com/selfservice/viewContent.do?externalId=328730
When using this fix the Tech Note indicates:
"Imported image data and tags are lost when you re-create the My Catalog.psa file, so you need to reimport images and reapply any tags"
however it did retain the captions (at least it did for me). -
'ORABPEL-11812 Failed Function Security validation' when invoking EBS webservice
Hi,
I got a problem when test web service on EBS R12.1.3.
I used SYSADMIN to test ISG installation using operation TESTUSERNAME in FND_USER_PACKAGE, but failed. Below is the log
Can anyone help me with this please? Thanks.
New Logger Instantiated...
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : Process Message received at : Mon Oct 13 23:27:24 CST 2014
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : Too many principals obtained from LoginModule. Using first one.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : Setting Principal Value = SYSADMIN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.IRepAccess.getUserIdFromName : User_id: 0 fetched for name: SYSADMIN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : User id for the principal = 0
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getSOAPBodyElement : SOAP Body Element Found.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : Body tns : http://xmlns.oracle.com/apps/fnd/soaprovider/plsql/fnd_user_pkg/testusername/
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getIRepInfo : Product = fnd
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getIRepInfo : IRep Suffix = plsql/fnd_user_pkg/testusername/
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getIRepInfo : InterfaceType PLSQL
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getIRepInfo : ITYPE CLASS
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getIRepInfo : class FND_USER_PKG
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.IRepAccess.getClassId : Class Id for irep_name FND_USER_PKG = 2702
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getIRepInfo : classId 2702
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getIRepInfo : FUNCTION_NAME TESTUSERNAME
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getIRepInfo : IRep Function Name PLSQL:FND_USER_PKG:TESTUSERNAME
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.IRepAccess.getFunctionId : Function Id for function name PLSQL:FND_USER_PKG:TESTUSERNAME = 43542
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.getIRepInfo : FUNCTION_ID 43542
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = Responsibility
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = SYSTEM_ADMINISTRATOR
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = RespApplication
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = SYSADMIN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = SecurityGroup
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = STANDARD
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = NLSLanguage
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = AMERICAN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = Org_Id
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractNameValuePairsFromNode : Property Name = 82
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractHeaders : Found Header. Name = SOAHeader
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractHeaders : Header Type = SOAHeader
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : Username from Header : SYSADMIN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : ResponsibilityName from Header : SYSTEM_ADMINISTRATOR
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : ResponsibilityApplName from Header : SYSADMIN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : SecurityGroupName from Header : STANDARD
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : NLSLanguage from Header : AMERICAN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : statusCode = S
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : UserId = 0
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : ResponsibilityId = 20420
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : ResponsibilityApplId = 1
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : SecurityGroupId = 0
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : NLSLanguageCode = US
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.IRepAccess.getLanguageFromCode : NLS language for code US = AMERICAN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : NLSLanguage = AMERICAN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : Inserting Following ID values into header table
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : UserId = 0
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : ResponsibilityId = 20420
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : ResponsibilityApplId = 1
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : SecurityGroupId = 0
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.convertHeaderNamesToId : NLSLanguageCode = US
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : In Audit Util.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : Creating WebAppsContext.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : Obtained context.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : Obtained Store.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : Obtained Profile.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : Request Date Mon Oct 13 23:27:24 CST 2014
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : Remote Host 10.161.73.55
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : HeaderData created
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : buildversion in auditRequest is 1213
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : HeaderBody created
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditRequest : Msg ID 10075
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : MsgId from AuditRequest 10075
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.setSecurityContext : Is security context set = true
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.setNLSContext : Is nls context set = true
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.IRepAccess.isServiceDeployed : Service Deployed Flag : Y
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.IRepAccess.isServiceDeployed : Service with Class Id2702 Deployed : true
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.IRepAccess.getInterfaceType : Function Name for function id 43542 = PLSQL:FND_USER_PKG:TESTUSERNAME
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : Checking log level for the current user and service combination
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.getInstanceId : Instance id is : 10075
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : Log level for the current operation : 0
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.AuthorizationHandler.authorize : Username from Header : SYSADMIN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.AuthorizationHandler.authorize : FunctionName : PLSQL:FND_USER_PKG:TESTUSERNAME
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.AuthorizationHandler.authorize : FunctionId : 43542
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.AuthorizationHandler.authorize : overloadSeq : 1
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.AuthorizationHandler.authorize : Function is not null.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.AuthorizationHandler.authorize : Creating data context.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.AuthorizationHandler.authorize : Is Function Authorized = true
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : Authorization check passed.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : serviceFactory instance is created
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.ServiceFactory.getServiceImplementation : Creating Handler for Interface Type = PLSQL
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : serviceHandler in
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : Request passed to oracle.apps.fnd.soa.provider.services.jca.JCAHandler
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.constructJCAWSDLLocation : function id to be passed= 43542
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.constructJCAWSDLLocation : overload count= 1
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.constructJCAWSDLLocation : Found JCAWSDL Location = /d01/oracle/ECPPROD/inst/apps/ECPPROD_ecpebs/soa//PLSQL/2702/TESTUSERNAME.wsdl
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.handleRequest : JCAWSDLLocation : /d01/oracle/ECPPROD/inst/apps/ECPPROD_ecpebs/soa//PLSQL/2702/TESTUSERNAME.wsdl
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.WSDLUtil.getOperationName : Operation Name = TESTUSERNAME
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.WSDLUtil.getOperationName : Response Required : true
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractInputMessage : Found Body Element : InputParameters
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.util.SOAPUtil.extractInputMessage : Converting to element : oracle.j2ee.ws.saaj.soap.soap11.BodyElement11
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting Username as : SYSADMIN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting Responsibility as : SYSTEM_ADMINISTRATOR
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting Responsibility Application Short Name as : SYSADMIN
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting Security Group name as : STANDARD
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting NLS Language as : US
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting ORG_ID as : 82
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting isISG as : yes
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting IsLoggingEnabled as : N
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting logLevel as 0
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.createAPIHeader : Setting TransactionId as :39676
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : JCAClientFactoryCrated.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : JCAInterfaceCreated.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : JCAOperationCreated.
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : buildversion in jcahanlder is 1213
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : found runtime classes
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : created instance for runtime classes
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : runtime Methods found [Ljava.lang.reflect.Method;@f61f70
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : method executeRequestResponseOperation found
Mon Oct 13 23:27:24 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : executing 3 parameter method
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : Exception returned from JCA Service Runtime.java.lang.reflect.InvocationTargetException
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke : Exception returned from JCA Service Runtime.oracle.apps.fnd.soa.util.SOAException: ServiceProcessingError: Exception returned from JCA Service Runtime. null
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.services.jca.JCAHandler.handleRequest : Exception returned from JCA Service Runtime.oracle.apps.fnd.soa.util.SOAException: ServiceProcessingError: Exception returned from JCA Service Runtime. Exception returned from JCA Service Runtime. null
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.createErrorResponseMessage : Creating Error Response Message.
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.getNLSTranslatedMessage : Error code : FND_SOA_SERVICE_EXECUTION_ERR
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.setSecurityContext : Is security context set = true
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.util.SOAContext.setNLSContext : Is nls context set = true
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.getNLSTranslatedMessage : NLS Compliant Error Msg = FND_SOA_SERVICE_EXECUTION_ERR
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.createErrorResponseMessage : Setting fault string = FND_SOA_SERVICE_EXECUTION_ERR:oracle.apps.fnd.soa.util.SOAException: ServiceExecutionError: Error while executing the service Exception returned from JCA Service Runtime. Exception returned from JCA Service Runtime. null
:Please see service monitor logs for full error trace
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.createErrorResponseMessage : Error Response Message Created
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : oracle.apps.fnd.soa.util.SOAException: ServiceExecutionError: Error while executing the service Exception returned from JCA Service Runtime. Exception returned from JCA Service Runtime. null
at oracle.apps.fnd.soa.provider.services.jca.JCAHandler.handleRequest(JCAHandler.java:135)
at oracle.apps.fnd.soa.provider.SOAProvider.processMessage(SOAProvider.java:366)
at oracle.j2ee.ws.server.provider.ProviderProcessor.doEndpointProcessing(ProviderProcessor.java:958)
at oracle.j2ee.ws.server.WebServiceProcessor$1.run(WebServiceProcessor.java:388)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAs(Subject.java:396)
at oracle.j2ee.ws.server.WebServiceProcessor.invokeEndpointImplementation(WebServiceProcessor.java:385)
at oracle.j2ee.ws.server.provider.ProviderProcessor.doRequestProcessing(ProviderProcessor.java:481)
at oracle.j2ee.ws.server.WebServiceProcessor.processRequest(WebServiceProcessor.java:114)
at oracle.j2ee.ws.server.WebServiceProcessor.doService(WebServiceProcessor.java:96)
at oracle.j2ee.ws.server.WebServiceServlet.doPost(WebServiceServlet.java:200)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:734)
at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:391)
at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:908)
at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:458)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:313)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:199)
at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
at java.lang.Thread.run(Thread.java:619)
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke(JCAHandler.java:193)
at oracle.apps.fnd.soa.provider.services.jca.JCAHandler.handleRequest(JCAHandler.java:123)
at oracle.apps.fnd.soa.provider.SOAProvider.processMessage(SOAProvider.java:366)
at oracle.j2ee.ws.server.provider.ProviderProcessor.doEndpointProcessing(ProviderProcessor.java:958)
at oracle.j2ee.ws.server.WebServiceProcessor$1.run(WebServiceProcessor.java:388)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAs(Subject.java:396)
at oracle.j2ee.ws.server.WebServiceProcessor.invokeEndpointImplementation(WebServiceProcessor.java:385)
at oracle.j2ee.ws.server.provider.ProviderProcessor.doRequestProcessing(ProviderProcessor.java:481)
at oracle.j2ee.ws.server.WebServiceProcessor.processRequest(WebServiceProcessor.java:114)
at oracle.j2ee.ws.server.WebServiceProcessor.doService(WebServiceProcessor.java:96)
at oracle.j2ee.ws.server.WebServiceServlet.doPost(WebServiceServlet.java:200)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:734)
at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:391)
at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:908)
at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:458)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:313)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:199)
at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
at java.lang.Thread.run(Thread.java:619)
Caused by: org.collaxa.thirdparty.apache.wsif.WSIFException: file:/d01/oracle/ECPPROD/inst/apps/ECPPROD_ecpebs/soa/PLSQL/2702/TESTUSERNAME.wsdl [ TESTUSERNAME_ptt::TESTUSERNAME(InputParameters,OutputParameters) ] - WSIF JCA Execute of operation 'TESTUSERNAME' failed due to: Error while processing an API interaction execution.
An error occurred while processing the interaction for invoking the FND_USER_PKG.TESTUSERNAME API. Cause: oracle.tip.adapter.apps.FunctionSecurityValidationException: Failed Function Security validation for user SYSADMIN with responsibility SYSTEM_ADMINISTRATOR for API PLSQL:FND_USER_PKG:TESTUSERNAME
; nested exception is:
ORABPEL-11812
Error while processing an API interaction execution.
An error occurred while processing the interaction for invoking the FND_USER_PKG.TESTUSERNAME API. Cause: oracle.tip.adapter.apps.FunctionSecurityValidationException: Failed Function Security validation for user SYSADMIN with responsibility SYSTEM_ADMINISTRATOR for API PLSQL:FND_USER_PKG:TESTUSERNAME
Check to ensure that the XML containing parameter data matches the parameter definitions in the XSD. Contact oracle support if error is not fixable.
at oracle.tip.adapter.fw.wsif.jca.WSIFOperation_JCA.executeRequestResponseOperation(WSIFOperation_JCA.java:642)
at oracle.tip.adapter.client.JCABindingOperation.invokeWsifProvider(JCABindingOperation.java:275)
at oracle.tip.adapter.client.JCABindingOperation.executeRequestResponseOperation(JCABindingOperation.java:182)
... 27 more
Caused by: ORABPEL-11812
Error while processing an API interaction execution.
An error occurred while processing the interaction for invoking the FND_USER_PKG.TESTUSERNAME API. Cause: oracle.tip.adapter.apps.FunctionSecurityValidationException: Failed Function Security validation for user SYSADMIN with responsibility SYSTEM_ADMINISTRATOR for API PLSQL:FND_USER_PKG:TESTUSERNAME
Check to ensure that the XML containing parameter data matches the parameter definitions in the XSD. Contact oracle support if error is not fixable.
at oracle.tip.adapter.db.sp.SPUtil.createResourceException(SPUtil.java:176)
at oracle.tip.adapter.db.sp.SPInteraction.executeStoredProcedure(SPInteraction.java:154)
at oracle.tip.adapter.db.DBInteraction.executeStoredProcedure(DBInteraction.java:1037)
at oracle.tip.adapter.db.DBInteraction.execute(DBInteraction.java:240)
at oracle.tip.adapter.apps.AppsInteraction.execute(AppsInteraction.java:195)
at oracle_tip_adapter_apps_AppsInteraction_Proxy.execute()
at oracle.tip.adapter.fw.wsif.jca.WSIFOperation_JCA.executeRequestResponseOperation(WSIFOperation_JCA.java:486)
... 29 more
Caused by: oracle.tip.adapter.apps.FunctionSecurityValidationException: Failed Function Security validation for user SYSADMIN with responsibility SYSTEM_ADMINISTRATOR for API PLSQL:FND_USER_PKG:TESTUSERNAME
at oracle.tip.adapter.apps.AppsCciLocalTransaction.beginInternal(AppsCciLocalTransaction.java:200)
at oracle.tip.adapter.db.sp.SPInteraction.executeStoredProcedure(SPInteraction.java:117)
... 34 more
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.processMessage : Auditing error: FND_SOA_SERVICE_EXECUTION_ERR
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.DBConnection.getJDBCConnection : Obtained new Jdbc Connection via Apps DataSource
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.constructJCAWSDLLocation : function id to be passed= 43542
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.constructJCAWSDLLocation : overload count= 1
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.SOAProvider.constructJCAWSDLLocation : Found JCAWSDL Location = /d01/oracle/ECPPROD/inst/apps/ECPPROD_ecpebs/soa//PLSQL/2702/TESTUSERNAME.wsdl
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.WSDLUtil.getOperationName : Operation Name = TESTUSERNAME
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.WSDLUtil.getOperationName : Response Required : true
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditResponse : Response Date Mon Oct 13 23:27:25 CST 2014
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditResponse : buildversion in auditResponse is 1213
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditResponse : Response Body : <env:Envelope xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"><env:Header/><env:Body><env:Fault xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"><faultcode xmlns="">SOAP-ENV:Server</faultcode><faultstring xmlns="">FND_SOA_SERVICE_EXECUTION_ERR:oracle.apps.fnd.soa.util.SOAException: ServiceExecutionError: Error while executing the service Exception returned from JCA Service Runtime. Exception returned from JCA Service Runtime. null
:Please see service monitor logs for full error trace</faultstring></env:Fault></env:Body></env:Envelope>
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditResponse : msgId : 10075
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditResponse : operationName : TESTUSERNAME
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditResponse : responseDate : Mon Oct 13 23:27:25 CST 2014
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditResponse : errorCode : FND_SOA_SERVICE_EXECUTION_ERR
Mon Oct 13 23:27:25 CST 2014 : oracle.apps.fnd.soa.provider.util.AuditUtil.auditResponse : errorTrace: oracle.apps.fnd.soa.util.SOAException: ServiceExecutionError: Error while executing the service Exception returned from JCA Service Runtime. Exception returned from JCA Service Runtime. null
at oracle.apps.fnd.soa.provider.services.jca.JCAHandler.handleRequest(JCAHandler.java:135)
at oracle.apps.fnd.soa.provider.SOAProvider.processMessage(SOAProvider.java:366)
at oracle.j2ee.ws.server.provider.ProviderProcessor.doEndpointProcessing(ProviderProcessor.java:958)
at oracle.j2ee.ws.server.WebServiceProcessor$1.run(WebServiceProcessor.java:388)
at java.security.AccessController.doPrivileged(Native Method)
at javax.security.auth.Subject.doAs(Subject.java:396)
at oracle.j2ee.ws.server.WebServiceProcessor.invokeEndpointImplementation(WebServiceProcessor.java:385)
at oracle.j2ee.ws.server.provider.ProviderProcessor.doRequestProcessing(ProviderProcessor.java:481)
at oracle.j2ee.ws.server.WebServiceProcessor.processRequest(WebServiceProcessor.java:114)
at oracle.j2ee.ws.server.WebServiceProcessor.doService(WebServiceProcessor.java:96)
at oracle.j2ee.ws.server.WebServiceServlet.doPost(WebServiceServlet.java:200)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:734)
at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:391)
at com.evermind.server.http.HttpRequestHandler.doProcessRequest(HttpRequestHandler.java:908)
at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:458)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:313)
at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:199)
at oracle.oc4j.network.ServerSocketReadHandler$SafeRunnable.run(ServerSocketReadHandler.java:260)
at com.evermind.util.ReleasableResourcePooledExecutor$MyWorker.run(ReleasableResourcePooledExecutor.java:303)
at java.lang.Thread.run(Thread.java:619)
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at oracle.apps.fnd.soa.provider.services.jca.JCAHandler.invoke(JCAHandler.java:193)
at oracle.apps.fnd.soa.provider.services.jca.JCAHandler.handleRequest(JCAHandler.java:123)
at oracle.apps.fnd.soa.provider.SOAProvider.processMessage(SOAProvider.java:366)
at oracle.j2ee.ws.server.provider.ProviderProcessor.doEndpointProcessing(ProviderProcessor.java:958)
at oracle.j2ee.ws.server.WebServiceProcessor$1.run(WebServiceProcessor.java:388)
at java.security.AccessController.doPrivileged(Native Method)Pl do not post duplicates - 'ORABPEL-11812 Failed Function Security validation' when invoking EBS webservice
-
How do I run a security scan on my macbook pro?
How do I run a security scan on my macbook pro?
If you have only Mac OSX running you don't need to run any security scan.
If any major security risk exists Apple offers Security Updates.
Just don't install any applications not needed,
If you run Windows that is a different story. -
Hyperlinks in PDF fail when security turned on Acrobat Pro 6
The InDesign CS created buttons I exported to PDF stop working when I apply security to not permit changes to document. The other bookmark type hyperlinks work. The external hyperlinks work. Just not the button types.
Using Acrobat 6, OS X 10.4.11, Power PC G4.
Can anyone help?Hyperlinks in PDF fail when security turned on Acrobat Pro 6
Thank you, Aandi.
That worked. Made my day.
Cheers,
Deborah -
How to do a security scan on my iPad
i would like to know how to do a security scan just incase I've downloaded a suspicious app or something. Does anyone know how
There is no virus or malware in the wild that can affect an iPad, unless it has
been jailbroken. If that is the case in your situation, Terms of Use for the forum prohibit
discussion of jailbroken devices. -
I get error 792 Connection attempt failed because security negotiation time out. I am trying to connect a xp machine to my vpn.
I get error 792 Connection attempt failed because security negotiation time out. I am trying to connect a xp machine to my vpn.
-
Flashing "Running Security Scan..."
On Windows 7, 64-bit, MS Office 2010; when I try to launch an online software that integrates a fillable-form into my Adobe Acrobat 9 Standard, at the bottom of my IE9 screen, flashing nearly 2 times per second, I see messages that say: "Running Security Scan...". I have to quite IE and force Adobe Acrobat to quit to stop it. How can I fix this so that I can properly run the software? (It works okay on my old slow XP, 32-bit coomputer, Office 2007, but the manufactureres say it is not an Office 2010 problem, nor Windows 7, 64-bit). Also, this happens whether or not my Trend Micro Anti-virus software is running.
That's something local on your computer or browser; not the Adobe download site.
Try from http://get.adobe.com/reader/enterprise/ -
802.1x and Security scanning
Hello,
Is it possible for our security team to security scan all hosts on the network if they are using 802.1x authentication? I am trying to ensure that we can meet security scanning requirements and still use the 802.1x port-based authentication function. If not the other alternative is to use port security for end hosts. Any help/advice would be greatly appreciated.
ThanksIf you are using open mode, you could put in a permit rule in the pre-auth acl on the switch port, that allows all traffic going to your scanners ip adress. Traffic from the scanner to the device on the switch port is not restricted normally.
-
Security Scan found Weak and Medium strength ciphers port 389&636
After a recent security scan on one of our Apple Servers running 10.9.5 (Mavericks) it has reported weak and medium strength ciphers on port 389&636 and also that SSLv2 and SSLv3 is enabled. The Server is running Profile Manager and therefore also Open Directory although we are not really using Open Directory for authentication as we have AD within the organisation.
My question is how can I modify Open Directory to only use HIGH ciphers and not MEDIUM or LOW? I have found the httpd-ssl.conf file but that is only listening on port 443. I have also found the slapd.conf but can't see where I would make the change.
Any help would be greatly appreciated.
ThanksSo would you believe it I've managed to get it working. I wanted to see if Yosemite suffered from the same 'issues' that Mavericks does with SSLv2 & SSLv3 support. Also the weak ciphers bsing used. Well they scannex that server and found exactly the same 'issues' as before. So I started working on it this morning editing slapd.conf, slapd.conf.default, slapd_macosxserver.conf and apache-ssl.conf it might sound overkill but I thought what the ****. I added the following lines to all conf files:
SSLProtocol ALL -SSLv2
SSLCipherSuite HIGH:!SSLv2:!ADH:!aNULL:!eNULL:!NULL
TLSCipherSuite HIGH:MEDIUM:+TLSv1:!SSLv2:+SSLv3
and and it worked. Passed the scan with flying colours however might need to mod SLLv3 to keep theM happy.
I need to replicate this on a Mavericks Server so hope the jist is the same.
thanks for the advice Linc. -
Whenever I install the Adobe Flash player or Adobe Reader on my system, it downloads and installs McAfee Security Scan Plus at the same time. It does not ask if I want it or not, it instead forces it on me, so I have to then unistall it. I've unistalled it 3 or 4 times in the last week. I DO NOT WANT MCAFEE PRODUCTS on my computer!
Please make this an option, give the users a choice so we don't have to keep removing the stupid thing.Did you 'Uncheck" the relevant box pointed by the red arrow ? If not you accepted the installation with McAfee.
-
What's listening on port 454 and 455 in Azure? Warning flagged by security scan
We are about to go live with an Azure Website and, as a precaution, did a security scan on the IP address that has been allocated to us.
There were a number of low severity warnings listed which we're not too worried about, however the scan did flag that something appears to be listening on port 454 and 455, and supports TLS1.0.
RESULTS:
Available non CBC cipher Server's choice SSL version
RC4-SHA DES-CBC3-SHA TLSv1
Does anyone know what this is? I can't find it obviously listed anywhere. If it's not necessary, can I switch it off? And if it is necessary, can I set it to require a more secure protocol?
We're hosted in the "Australia East" datacentre, in case that's relevant.
Crossposted to Stack Overflow here:
http://stackoverflow.com/questions/27807505/whats-listening-on-port-454-and-455-in-azure-warning-flagged-by-security-scanHello Michael,
These ports are used for internal communication in Azure Websites infrastructure. They are not site specific and you cannot turn them off. It is safe to ignore them.
Thanks,
Petr
Maybe you are looking for
-
My iPhone 4 signal issues are gone...
Well, like many of people here I had the obnoxious signal loosing issue that is affecting a staggering amount of iPhone 4 users. However, I never realized I inadvertedly fixed the issue until just 10 minutes ago. I had signal issues since Day 1. Bear
-
Database Adapter Advanced Polling Technique
I would like to create a polling database adapter on an SOA application. The data is statistical and changes frequently. I have developed the SQL in sqldeveloper to get the data (hard part done, or so I thought). I would like the adapter to poll the
-
i purchased subscription for Export PDF and money has come off my card but cannot access it. my account does not say that i have bought it
-
iPlanet-Web-Proxy-Server/3.6-SP6/2004.243.0654 SP6 Obj.conf Init section: Init fn="flex-init" access="/web/soft/3.6proxy/proxy-ntsmtcmlon01-acl-xrp1/logs/access" format.access="%Ses->c lient.ip% - %Req->vars.pauth-user% [%SYSDATE%] \"%Req->reqpb.prox
-
I just purchased the GB Creative Zen V. I will be traveling next week with no access to a computer to charge it. I?would like to use a digital uni'versal ac adapter to charge it while I'm away. I understand I can purchase a charger from Creative but