Security Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

SSL cert signature algorithm

807573Nov 12 2009 — edited Nov 16 2009

Our DS ssl cert has been flagged a security vulnerability because it uses RC4-MD5 signature algorithm which allow collisions (cve-2004-2761). In dscc / servers / security / general / cipher family / we've changed "selected ciphers" to remove "SSL RSA FIPS RC4 128 BIT - MD5", leaving only 5 others using SHA. Stopped/Restarted the server.

When we created a self-signed certificate it still shows it using MD5withRSA ???

Also, is there a way to set self-signed certs for longer than 3-month periods?

Thanks!

--Chuck

Locked Post

New comments cannot be posted to this locked post.

Locked on Dec 14 2009

Added on Nov 12 2009

#identity-management, #oracle-unified-directory-oud-oracle-directory-server-enterprise-edition-sun-dsee

3 comments

408 views