Disabling SSLv3 For POODLE vulnerability produces errors

Solution Verified - Updated -

Issue

  • We have tried the solution mentioned in https://access.redhat.com/solutions/1232233 for disabling SSLV3 poodle vulnerability. But after trying this solution and restarting the server, the server was not coming up clean. We are seeing the following exception in our logging. Could you please go through the attached server.log and server.xml and let us know where the issue is?
2014-10-27 09:05:01,348 ERROR [org.apache.coyote.http11.Http11Protocol] (main) Error initializing endpoint
    java.io.IOException: TLS,TLSv1,TLSv1.1,TLSv1.2 SSLContext not available
        at org.apache.tomcat.util.net.jsse.JSSESocketFactory.init(JSSESocketFactory.java:470)
        at org.apache.tomcat.util.net.jsse.JSSESocketFactory.createSocket(JSSESocketFactory.java:143)
        at org.apache.tomcat.util.net.JIoEndpoint.init(JIoEndpoint.java:502)
        at org.apache.coyote.http11.Http11Protocol.init(Http11Protocol.java:175)
        at org.apache.catalina.connector.Connector.initialize(Connector.java:1029)
        at org.apache.catalina.core.StandardService.initialize(StandardService.java:683)
        at org.apache.catalina.core.StandardServer.initialize(StandardServer.java:821)
        ....

Environment

  • Red Hat JBoss Enterprise Application Platform (EAP) 5

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content