Enabling weak cipher suites for Tivoli Netcool/OMNIbus is NOT recommended

Flashes (Alerts)

Abstract

With the recent attention to RC4 “Bar Mitzvah” Attack for SSL/TLS, this is a reminder to NOT enable weak or export-level cipher suites for Tivoli Netcool/OMNIbus

Content

Tivoli Netcool/OMNIbus by default disables the RC4 stream cipher. If you enabled the RC4 stream cipher you are exposed to the attack described above. IBM recommends that you review your entire environment to identify other areas where you have enabled the RC4 stream cipher and take appropriate mitigation and remediation actions.

Configure the OMNIbus server components to use FIPS mode that will disable RC4 by default. FIPS mode configuration is described here: http://www-01.ibm.com/support/knowledgecenter/SSSHTQ_8.1.0/com.ibm.netcool_OMNIbus.doc_8.1.0/omnibus/wip/install/concept/omn_con_fips_configuringsupport.html?lang=en

[{"Product":{"code":"SSSHTQ","label":"Tivoli Netcool\/OMNIbus"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"--","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"7.4.0;7.3.1;7.3.0;8.1.0","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Tips

Enabling weak cipher suites for Tivoli Netcool/OMNIbus is NOT recommended

Flashes (Alerts)

Abstract

Content

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?