POODLE and webNetwork

POODLE and webNetwork

What has happened?
A security vulnerability called POODLE has been found in SSL 3.0. Despite being an older encryption technology that is only used in less than 1% of SSL traffic, most web servers still allowed this protocol to enable older browsers such as Internet Explorer 6 to connect. Recently it has been found that hackers could exploit POODLE to covertly watch their victim’s web browsing or even take control of their web sessions. It is therefore recommended that the use of SSL v3 is discontinued altogether.
 
What we have done:
We have released an update to webnNetwork that completely disables the use of SSL v3.   webNetwork 6.2.1.186 is the build that shuts off SSLv3 on the server via a config file called \stoneware\config\excludeProtocols  After the upgrade of your webNetwork servers, SSLv3 will be disabled.  Should you need to turn it back on, simply remove / edit that file and comment out the SSLV3 line and restart webNetwork.

What you should do:
If you are worried about SSLV3, then you should upgrade to the latest webNetwork code to get the ability to disable SSLV3.

More information:

For a combination of allowCipher / denyCipher / includeProtocols / excludeProtocols that we recommend




    Can't find the KB

    Unable to find the KB to address your issue ?  

      • Recent Articles

      • Lenovo Unified Workspace End-of-Life Questions and Answers

        Will the shutdown of LUW servers and access to downloads affect my server licensing? No, the shutdown of the customer servers and access to the product and licensing downloads will not affect your server licensing. This license is downloaded and ...

      • How do I determine my Unified Workspace license expiration date?

        The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...

      • Lenovo Unified Workspace 7.0.2.13 Released

        Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...

      • LanSchool Documentation Guides

        LanSchool Classic Teacher Console The LanSchool Teacher Console is the interface teachers will use to manage their classroom and students. It contains all the tools necessary for a teacher to effectively interact with students and create a ...

      • Lenovo Unified Workspace 7.0.1.41 Released

        Highlights of Unified Workspace 7.0.1.41 Before you install: Please view the installation notes here. 7.0.1.41 requires a 7.0 license file. Below is a list of enhancements and fixes for Unified Workspace 7.0.1.41 Updated Log4j Updated Java Updated ...

      • Related Articles

      • Move webNetwork to different server

        *** If you are moving to a different OS, please see : https://helpdesk.lenovosoftware.com/portal/kb/articles/migrate-webnetwork-to-windows-linux-22-8-2017 *** Keeping the same OS / version / IP As long as you are keeping the same OS/ version/IP then ...

      • Change webNetwork License File

        To change/update your webNetwork license: Login to the Customer Portal, download your webNetwork license (license.sw). Copy the license file to each webNetwork server, replacing the existing file. The license file goes in the \stoneware\config ...

      • webNetwork 6.3.0.152 for download.

        webNetwork 6.3.0.152 is now available for download on the customer portal.  This refresh has only a small amount of changes.  The change log can be viewed here.

      • Migrate webNetwork to windows / linux

        To move from Linux to Windows on the same hardware: Backup the current install to cd, pen drive, network, etc...  Be sure to TAR, ZIP, GZ the files before transferring them or you risk corruption. * Install windows * Make a c:\stoneware directory * ...

      • Backup / Disaster recovery for webNetwork

        The customer wants to know what directory structure required for restore in a disaster recovery situation of both loader and relay?   Stoneware is self-contained in the stoneware directory, so as long as you back up that directory on each server you ...