Dell Drac5 控制台java插件不可用

未经许可,禁止转载。
本文链接地址: https://www.annhe.net/article-3139.html

用Java插件打开Drac5的控制台会报如下错误:

error when reading from SSL socket connection

Google到一篇文章

So the openjdk in most linux distros has now been upgraded to v1.8. This has a good bug fix regarding the whole SSLv3 Poodle vulnerability.

This has one problem. The Dell DRAC remote management cards installed in a lot of Dell servers relies on SSLv3 to operate. Without this, you can get into the web interface – but when you get an error stating Error when reading from SSL socket connection and no further.

drac-ssl-error

Thankfully, it is simple to re-enable SSLv3 to allow the connection to succeed.

Open up /usr/lib/jvm/*/jre/lib/security/java.security in your favourite editor as root, and change the following line:
jdk.tls.disabledAlgorithms=SSLv3

to

jdk.tls.disabledAlgorithms=

This enables SSLv3 to all java applications – however it exposes yourself to the MITM attack as defined in CVE-2014-3566. I suggest having a read of the CVE to understand if you want to leave this setting as default on your system or disable it again afterwards.

Frome:https://www.crc.id.au/2015/01/31/java-update-broke-the-dell-drac-5-remote-management-cards/

在windows上

The corresponding file (at least on my install) for Windows is at C:\Program Files (x86)\Java\jre1.8.0_31\lib\security\java.security .
The jdk.tls.disabledAlgorithms line that needs to be commented out is at the bottom of the file. I agree that Dell needs to update the DRAC5 to support newer ciphers..

From: http://en.community.dell.com/support-forums/servers/f/956/t/18394689



未经许可,禁止转载。
本文链接地址: https://www.annhe.net/article-3139.html

发表评论

电子邮件地址不会被公开。 必填项已用*标注