How to disable ciphers in JBOS
Due to the Sweet32 vulnerability, we need to ensure that JBOS is not allowed to use DES and 3DES ciphers. Is there documentation that describes how to do this?
Here's IBM suggested way to disable ciphers. https://www.ibm.com/support/knowledgecenter/en/SSYKE2_6.0.0/com.ibm.java.security.component.60.doc/security-component/jsse2Docs/disabledalgorithms.html
which is done in directory jre/lib/security/java.security.
Was this information helpful?