Possible security exposure on and after April 26, 2012, if using the IBM HTTP Server Web Server Plug-in for WebSphere Application Server
This technote is applicable only to sites using the IBM HTTP Server with Mashup Center:
SSL connections between the plug-in and the Mashup Center Server (WebSphere Application Server v 7.0) might fail or revert to non-SSL after the shipped version of the plugin-key.kdb password expires April 26, 2012 US EDT.
This technote is based on Urgent Flash #1591172 and supplies additional details specific to releases of IBM Mashup Center. Refer to the original document (see: 'Related information' section) for complete information about this potential problem
Refer to the original Flash document titled: Password to the plugin-key.kdb file expires on April 26, 2012 US EDT for complete information on how to address this problem.
If all of the following are true of your Mashup Center installation you need to read the Flash document referenced below and take appropriate action:
- You are using the IBM HTTP Server (standard in a cluster configuration)
- You are using the key store installed by default with the Web Server Plug-in for WebSphere Application Server
- You have never changed the password for the key store
Change the key store password (see Related information section: Corrective Action) and set the new password expiration to a valid value.
|Software Development||IBM Mashup Center||Not Applicable||AIX, Linux, Windows||18.104.22.168, 3.0, 2.0, 1.1||All Editions|
|Software Development||Lotus Mashups||Not Applicable||AIX, Linux, Windows||Version Independent||All Editions|
More support for:
Software version: 1.1, 2.0, 3.0
Operating system(s): AIX, Linux, Windows
Software edition: All Editions
Reference #: 1592924
Modified date: 01 May 2012