POODLE and webNetwork

POODLE and webNetwork

What has happened?
A security vulnerability called POODLE has been found in SSL 3.0. Despite being an older encryption technology that is only used in less than 1% of SSL traffic, most web servers still allowed this protocol to enable older browsers such as Internet Explorer 6 to connect. Recently it has been found that hackers could exploit POODLE to covertly watch their victim’s web browsing or even take control of their web sessions. It is therefore recommended that the use of SSL v3 is discontinued altogether.
 
What we have done:
We have released an update to webnNetwork that completely disables the use of SSL v3.   webNetwork 6.2.1.186 is the build that shuts off SSLv3 on the server via a config file called \stoneware\config\excludeProtocols  After the upgrade of your webNetwork servers, SSLv3 will be disabled.  Should you need to turn it back on, simply remove / edit that file and comment out the SSLV3 line and restart webNetwork.

What you should do:
If you are worried about SSLV3, then you should upgrade to the latest webNetwork code to get the ability to disable SSLV3.

More information:

For a combination of allowCipher / denyCipher / includeProtocols / excludeProtocols that we recommend




    Can't find the KB

    Unable to find the KB to address your issue ?  

      • Recent Articles

      • Change Reset Password Button Text

        Change the text of the "Reset Password" button on the UW Login Page How to change the text of the Reset Password button on the Login Page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants ...

      • Remove Reset Password Button From Login Page

        Remove the Reset Password Button from the Login Page How to remove the Reset Password button from the Unified Workspace login page. Login to webNetwork and open webAdmin on your Relay Central Server Expand Customization Center Expand Tenants Expand ...

      • Lenovo Unified Workspace End-of-Life Questions and Answers

        As of January 31st 2024, Lenovo Unified Workspace (formerly Stoneware WebNetwork) is no longer supported. This means that we no longer provide licenses, downloads, updates, patches, or technical assistance for this product. If you have any questions ...

      • How do I determine my Unified Workspace license expiration date?

        The best method for determining the licensing information including the expiration date of your Unified Workspace license: Login to your 8090 management console on each server This may take remoting into each LUW server and relay, opening a browser, ...

      • Lenovo Unified Workspace 7.0.2.13 Released

        Highlights of Unified Workspace 7.0.2.13 Before you install: Please view the installation notes here. 7.0.2.13 requires a 7.0 license file. Below is a list of enhancements and fixes released in Unified Workspace 7.0.2.13 Fixed external storage ...

      • Related Articles

      • Move webNetwork to different server

        *** If you are moving to a different OS, please see : https://helpdesk.lenovosoftware.com/portal/kb/articles/migrate-webnetwork-to-windows-linux-22-8-2017 *** Keeping the same OS / version / IP As long as you are keeping the same OS/ version/IP then ...

      • Change webNetwork License File

        To change/update your webNetwork license: Login to the Customer Portal, download your webNetwork license (license.sw). Copy the license file to each webNetwork server, replacing the existing file. The license file goes in the \stoneware\config ...

      • webNetwork 6.3.0.152 for download.

        webNetwork 6.3.0.152 is now available for download on the customer portal.  This refresh has only a small amount of changes.  The change log can be viewed here.

      • Migrate webNetwork to windows / linux

        To move from Linux to Windows on the same hardware: Backup the current install to cd, pen drive, network, etc...  Be sure to TAR, ZIP, GZ the files before transferring them or you risk corruption. * Install windows * Make a c:\stoneware directory * ...

      • Backup / Disaster recovery for webNetwork

        The customer wants to know what directory structure required for restore in a disaster recovery situation of both loader and relay?   Stoneware is self-contained in the stoneware directory, so as long as you back up that directory on each server you ...