This content has been marked as final. Show 3 replies
Hmmm....there has got to be a way to do this, at the very least on the server side. If this were a Tomcat server, I'd add the "ciphers" attribute to my HTTPS connector block (in my server.xml file) and have a comma-separated list of the ciphers that I wanted to be available for use.
I don't know how to do this in JBoss though, which is what the Hyperic server runs in.
Maybe there is a way to remove the low and medium ciphers from the JVM itself? Maybe via a Java runtime option? If the Hyperic Agent configuration doesn't support this via configuration, that may be the only way to do this.
In order to achieve this I made a simple change:
in /<hyperic-server install dir>/conf/templates/server.xml I added:
ciphers="SSL_RSA_WITH_RC4_128_MD5" right after sslProtocol = "TLS" and restarted the hyperic server.
This change doesn't hold good for Hyperic 4.4. Can anyone help me in controlling cipher suites on HQ 4.4 version?