Add environment variable to Endevor web services ENV file
search cancel

Add environment variable to Endevor web services ENV file

book

Article ID: 258930

calendar_today

Updated On:

Products

Endevor

Issue/Introduction

Qualys CVE scan found CVE 38863 issue in Endevor web services for a Weak SSL/TLS Key Exchange. Tried adding the GSK parms in the WSTOMENV member but it's not appearing in the JES output. Is there something special that needs to be done?

These are the parms attempted to add:

GSK_SERVER_ALLOWED_KEX_ECURVES=002500240023002100300029            
 #                                                                  
 GSK_CLIENT_EPHEMERAL_DH_GROUP_SIZE=2048                            
 #                                                                  
 GSK_PEER_RSA_MIN_KEY_SIZE=2048                                     
 #                                                                  
 GSK_SERVER_EPHEMERAL_DH_GROUP_SIZE=2048                            
 #                                                                  
 GSK_PEER_DH_MIN_KEY_SIZE=2048                                   

Environment

Release : 18.1

Resolution

Define environment variables using the export keyword in WSTOMENV, for example:

export GSK_PEER_DH_MIN_KEY_SIZE=2048   

Powered by Wolken Software