Skip to Main Content
Forums

Security Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

SSL cert signature algorithm

807573Nov 12 2009 — edited Nov 16 2009
Our DS ssl cert has been flagged a security vulnerability because it uses RC4-MD5 signature algorithm which allow collisions (cve-2004-2761). In dscc / servers / security / general / cipher family / we've changed "selected ciphers" to remove "SSL RSA FIPS RC4 128 BIT - MD5", leaving only 5 others using SHA. Stopped/Restarted the server.

When we created a self-signed certificate it still shows it using MD5withRSA ???

Also, is there a way to set self-signed certs for longer than 3-month periods?

Thanks!

--Chuck
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Dec 14 2009
Added on Nov 12 2009
#identity-management, #oracle-unified-directory-oud-oracle-directory-server-enterprise-edition-sun-dsee
3 comments
424 views