TLS padding vulnerability affects IBM HTTP Server (CVE-2014-8730) PDF Print E-mail
User Rating: / 0
Written by Michael Felt   

Security Bulletin

TLS padding vulnerability affects IBM HTTP Server (CVE-2014-8730)

Summary

Transport Layer Security (TLS) padding vulnerability via a POODLE (Padding Oracle On Downgraded Legacy Encryption) like attack affects IBM HTTP Server.

Workarounds and Mitigations

For all versions and releases of Apache based IBM HTTP server, IBM recommends enabling strict CBC padding enforcement. Add the following directive to the httpd.conf file to disable SSLv3 and SSLv2 for each context that contains "SSLEnable":

# Enable strict CBC padding
SSLAttributeSet 471 1
Read more...
 
AIXTOOLS: perl64 PDF Print E-mail
User Rating: / 1
Written by Michael Felt   

64-bit Perl for AIX

Today I packaged 64-bit versions of perl for AIX. Versions aixtools.perl64.5.14.4 and aixtools.perl64.5.20.1. With perl for AIX I am not overwriting AIX perl - because there are probably dependancies that AIX perl programs depend on. Instead, the programs are located at /opt/perl64/bin. The 32-bit versions install to /opt/perl5/bin. The other versions? I'll get around to the others fairly soon, but I want to get rrdtool finished first (Now that I finally have the latest of glib from GNOME finished up.

Installation instructions

Normal install procedure (command line or smit) and either set your PATH variable to the directory - or setup some symbolic links to /opt/bin.

 
AIX and VIOS TL/SP Roadmaps 2014 PDF Print E-mail
User Rating: / 0
Written by Michael Felt   

Where we are in pictures

You know the saying - a picture is 1000 words. Well here it is - in pictures - where we should/could be for AIX 6.1, AIX 7.1 and VIOS levels as of October and November 2014. Pictures courtesy of IBM Fix Central.

Read more...