堆栈内存溢出
  简体   繁体   English

Tivoli Monitoring Agent中的SSL漏洞

[英]SSL vulnerability in Tivoli Monitoring Agent

 原文  2017-05-06 04:37:47       windows/ ssl/ tivoli

问题描述

I am fixing some deviations on a windows server 2008, and in the scan results the vulnerability SSL Enabled Server Supports Medium Strength SSL Encryption Certificates/Ciphers appeared in port 7756. The application that is running in that port is kntcma(Tivoli Monitoring agent). 我正在修复Windows Server 2008上的一些偏差,并且在扫描结果中,漏洞已启用SSL的服务器支持中等强度SSL加密证书/密码出现在端口7756中。在该端口中运行的应用程序是kntcma(Tivoli Monitoring代理)。 I tried to fix this by going to TEMS->Advanced->Edit variables and add the next lines: 我尝试通过转到TEMS-> Advanced-> Edit变量并添加以下几行来解决此问题: 

GSK_PROTOCOL_SSLV2=OFF
GSK_PROTOCOL_SSLV3=ON
GSK_V3_CIPHER_SPECS="350A"

Then I restarted the agent and thought that would be enough to solve the vulnerability, but it didn't. 然后,我重新启动了代理,并认为这足以解决漏洞,但事实并非如此。 The deviation continues to appear and I don't know what else to do to fix it 偏差继续出现,我不知道该如何解决

1 个解决方案

解决方案1
 0  2018-05-10 01:47:43

You can use certificates... here are some steps to recreate the security certificates: 您可以使用证书...以下是重新创建安全证书的一些步骤:

a) Set properties: a)设置属性:

C:\\IBM\\ITM\\InstallITM\\GetGSKitHome.bat -> add the output at the beginning of the PATH C:\\IBM\\ITM\\InstallITM\\GetGSKitHome.bat >将输出添加到PATH的开头

example: 例:

set PATH=C:\\IBM\\ITM\\GSK7;C:\\IBM\\ITM\\GSK7\\lib;C:\\IBM\\ITM\\GSK7\\bin;%PATH%

C:\\IBM\\ITM\\InstallITM\\GetJavaHome.bat -> set the output of this command as the JAVA_HOME C:\\IBM\\ITM\\InstallITM\\GetJavaHome.bat >将此命令的输出设置为JAVA_HOME

example: 例:

set JAVA_HOME=C:\\IBM\\ITM\\java\\java50\\jre

b) Delete and recreate certificates b)删除并重新创建证书

on 32 bits servers where only gsk7capicmd utility is available: 在仅gsk7capicmd实用程序可用的32位服务器上:

set PATH=C:\\IBM\\ITM\\GSK7;C:\\IBM\\ITM\\GSK7\\lib;C:\\IBM\\ITM\\GSK7\\bin;%PATH%

gsk7capicmd.exe -cert -delete -db C:\\IBM\\ITM\\keyfiles\\keyfile.kdb -pw IBM61TIV -label "IBM_Tivoli_Monitoring_Certificate"

on 32 bits servers where gsk8capicmd utility is available: 在可以使用gsk8capicmd实用程序的32位服务器上:

set PATH=C:\\IBM\\ITM\\GSK8;C:\\IBM\\ITM\\GSK8\\lib;C:\\IBM\\ITM\\GSK8\\bin;%PATH%

gsk8capicmd.exe -cert -delete -db C:\\IBM\\ITM\\keyfiles\\keyfile.kdb -pw IBM61TIV -label "IBM_Tivoli_Monitoring_Certificate"

on 64 bits servers where only gsk7capicmd_64 is available: 在仅gsk7capicmd_64可用的64位服务器上:

set PATH=C:\\IBM\\ITM\\GSK7_x64;C:\\IBM\\ITM\\GSK7_x64\\lib64;C:\\IBM\\ITM\\GSK7_x64\\bin;%PATH%

gsk7capicmd_64.exe -cert -delete -db C:\\IBM\\ITM\\keyfiles\\keyfile.kdb -pw IBM61TIV -label "IBM_Tivoli_Monitoring_Certificate"

on 64 bits servers where gsk8capicmd_64 is available: 在gsk8capicmd_64可用的64位服务器上:

set PATH=C:\\IBM\\ITM\\GSK8_x64;C:\\IBM\\ITM\\GSK8_x64\\lib64;C:\\IBM\\ITM\\GSK8_x64\\bin;%PATH%

gsk8capicmd_64.exe -cert -delete -db C:\\IBM\\ITM\\keyfiles\\keyfile.kdb -pw IBM61TIV -label "IBM_Tivoli_Monitoring_Certificate"

c) create new certificate c)创建新证书

on 32 bits servers where only gsk7capicmd utility is available: 在仅gsk7capicmd实用程序可用的32位服务器上:

set PATH=C:\\IBM\\ITM\\GSK7;C:\\IBM\\ITM\\GSK7\\lib;C:\\IBM\\ITM\\GSK7\\bin;%PATH%

gsk7capicmd.exe -cert -create -db C:\\IBM\\ITM\\keyfiles\\keyfile.kdb -pw IBM61TIV -size 4096 -dn "CN=IBM Tivoli Monitoring Self-Signed Certificate,O=IBM Tivoli,C=US" -label "IBM_Tivoli_Monitoring_Certificate" -default_cert yes -expire 3652 -sigalg sha1

on 32 bits servers where gsk8capicmd utility is available: 在可以使用gsk8capicmd实用程序的32位服务器上:

set PATH=C:\\IBM\\ITM\\GSK8;C:\\IBM\\ITM\\GSK8\\lib;C:\\IBM\\ITM\\GSK8\\bin;%PATH%

gsk8capicmd.exe -cert -create -db C:\\IBM\\ITM\\keyfiles\\keyfile.kdb -pw IBM61TIV -size 4096 -dn "CN=IBM Tivoli Monitoring Self-Signed Certificate,O=IBM Tivoli,C=US" -label "IBM_Tivoli_Monitoring_Certificate" -default_cert yes -expire 3652 -sigalg sha1

on 64 bits servers where gsk7capicmd_64 utility is available: 在可以使用gsk7capicmd_64实用程序的64位服务器上:

set PATH=C:\\IBM\\ITM\\GSK7_x64;C:\\IBM\\ITM\\GSK7_x64\\lib64;C:\\IBM\\ITM\\GSK7_x64\\bin;%PATH%

gsk7capicmd_64.exe -cert -create -db C:\\IBM\\ITM\\keyfiles\\keyfile.kdb -pw IBM61TIV -size 4096 -dn "CN=IBM Tivoli Monitoring Self-Signed Certificate,O=IBM Tivoli,C=US" -label "IBM_Tivoli_Monitoring_Certificate" -default_cert yes -expire 3652 -sigalg sha1

on 64 bits servers where gsk8capicmd_64 utility is available: 在可以使用gsk8capicmd_64实用程序的64位服务器上:

set PATH=C:\\IBM\\ITM\\GSK8_x64;C:\\IBM\\ITM\\GSK8_x64\\lib64;C:\\IBM\\ITM\\GSK8_x64\\bin;%PATH%

gsk8capicmd_64.exe -cert -create -db C:\\IBM\\ITM\\keyfiles\\keyfile.kdb -pw IBM61TIV -size 4096 -dn "CN=IBM Tivoli Monitoring Self-Signed Certificate,O=IBM Tivoli,C=US" -label "IBM_Tivoli_Monitoring_Certificate" -default_cert yes -expire 3652 -sigalg sha1

You can find more information at this link . 您可以在此链接中找到更多信息。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在ZABBIX代理窗口中使用JBOSS 7.1 JMX进行监视 - Monitoring with JBOSS 7.1 JMX in ZABBIX agent windows DLL监控 - DLL monitoring GIMP 2.8.14(Windows)上存在漏洞 - Vulnerability found on GIMP 2.8.14 (Windows) 监控文件夹中的文件 - Monitoring files in folders 异步监视文件 - Monitoring files asynchronously 监视应用程序/跟踪内存 - Monitoring application/tracking memory 创建用于监视的服务 - Creating a service for monitoring 监视forwardedEvents Windows日志 - Monitoring The forwardedEvents windows log 在Windows中监控进程 - Monitoring a process in Windows 个人互联网使用监控 - Personal Internet use monitoring
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM