JBoss EAP 6.4 도메인 모드에서 Vault를 이용한 데이터소스 비밀번호 암호화

JBoss EAP 6.4 도메인 모드에서 Vault를 이용한 데이터소스 비밀번호 암호화 body { font-family: Arial, sans-serif; line-height: 1.6; margin: 20px; padding: 20px; } h1, h2, h3 { color: #2c3e50; } pre { background: #f4f4f4; padding: 10px; border-radius: 5px; ...

IBM Liberty에서 SecurityUtility 기능을 활용한 키 설정 방법

Liberty에서 SecurityUtility 기능을 활용한 키 설정 방법 Liberty에서 SecurityUtility 기능을 활용한 키 설정 방법 Liberty에서 securityUtility 기능을 사용하여 SSL 인증서를 생성하고 설정하는 방법을 아래에 설명합니다. SSL 인증서 생성 ./securityUtility createSSLCertificate --server=s11 --password=keyPassword --validity=7300 --passwordEncoding=aes --passwordKey=aesPassword [was@testwas11 bin]$ ./securityUtility createSSLCertificate...

WAS | JBoss How to suppress or change Server header and X-Powered-By response header returned by JBoss EAP 7.4

WebSphere when native_stdout file capacity continues to increase WAS : JBoss EAP 7.4 issue How to suppress or change "Server" header and "X-Powered-By" response header returned by JBoss EAP 7.4 보안 취약문제로 Response header "Server", "x-powered-by" 에 노출 되는 버전 정보 문제 HTTP/1.1 200 OK X-Powered-By:...

WAS | WebSphere when native_stdout file capacity continues to increase

WebSphere when native_stdout file capacity continues to increase OS : CentOS 7 3.10.0-957.el7.x86_64 issue JVM-"Java"-Logs(SystemOut, SystemErr)의 경우 WebSphere에는 로그 순환을 허용하는 내장 메커니즘이 있다(시간 또는 크기 기반 접근법 또는 두 가지 접근법의 혼합). JVM-"프로세스"-Logs(native_stderr, native_stdout)의 경우 WebSphere에는 이러한 내장 메커니즘이 없다. 특히...

WAS | WebSphere console TLSv 1.2

pdf 뷰어 테스트 ▌ issue : 특정 브라우저 접속시 콘솔 접근이 불가능할 경우 ▌ cause of a problem : 브라우저 정책 변경으로 TLSv1.1 이하 프로토콜이 차단되어 문제가 발생 ...

WAS | WebSphere 전체 Log4j 보안 취약점 관련 내용 정리

WebSphere 전체 Log4j 보안 취약점 관련 내용 정리 Security Bulletin: Multiple vulnerabilities in Apache log4j affect the IBM WebSphere Application Server and IBM WebSphere Application Server Liberty (CVE-2021-4104, CVE-2021-45046) Affected Products and Versions Affected Product(s) Version(s) WebSphere Application Server Liberty Continuous delivery WebSphere Application Server 9.0 WebSphere Application...

WEB | Converting p12 to kdb files using gskcmd

Converting p12 to kdb files using gskcmd Test Environment -Test Version : IBM HTTPServer v9.x Key file conversion 1. pem to p12 # openssl pkcs12 -export -inkey Wildcard.test.co.kr_pem.key -in Wildcard.cardif.co.kr_pem.pem -out Wildcard.test.co.kr.p12 2. p12 to kdb You can invoke the gskcapicmd from the install_root/bin directory Converting key file # ./gskcapicmd -cert -export -target key.kdb...

WAS | WebSphere 보안 취약점 관련 access Log 설정

WebSphere 보안 취약점 관련 access Log 설정 Test Environment Test Version : WebSphere v8.5 NCSA access Log and HTTP error log set up HTTP Access 전체 로그 설정 Click Servers > Server Types > WebSphere application servers > server_name > NCSA access and HTTP error logging. Select Enable logging service...

SSL | WebSphere TLS Clearing issues

WebSphere TLS Clearing issues Is TLS v1.2 supported in WebSphere Full Profile 7.0, 8.0, 8.5? What's minimum fix pack? Answer: TLsv1.2 Suppport on V7.0.0.23 on wards TLsv1.2 Support on 8.0.0.3 onwards and 8.5.0.0. TLS v1.2 supported in WebSphere with following JDK version. 7.0.0.23 comes JDK version as follows and TLSv1.2 supported SDK 6 (32-bit) pap3260sr10fp1-20120321_01(SR10 FP1) (64-bit) pap6460sr10fp1-20120321_01(SR10...

WAS | Liberty Core installUtility command

To use the Liberty installUtility command. version : IBM Liberty Core 20.0.0.6 OS : CentOS 7.2 feature Search # installUtility find {feature_name} --type=feature feature Download # installUtility Download {feature_name} --location={download_path} --acceptLicense repositories 저장소 저장을 위해 repositories.properties...