SSL security vulnerabilities - 7.3

Talend Data Catalog Installation and Upgrade Guide for Linux

EnrichVersion
7.3
EnrichProdName
Talend Big Data Platform
Talend Data Fabric
Talend Data Management Platform
Talend Data Services Platform
Talend MDM Platform
Talend Real-Time Big Data Platform
EnrichPlatform
Talend Data Catalog
task
Installation and Upgrade

Poodle is a "Man In The Middle" (MITM) vulnerability which needs to be primarily fixed server side. An attacker can trick the server into downgrading the encryption protocol used to communicate. The servers should be configured to disallow TLS fallback, or to disable SSLv3 as a valid protocol.

If Tomcat has been configured with SSL support, you should add the following to the connector description in the <TDC_HOME>/TalendDataCatalog/tomcat/conf/server.xml.

sslEnabledProtocols="TLSv1.2,TLSv1.1,TLSv1"