Qualys CVE scan found CVE 38863 issue in Endevor web services for a Weak SSL/TLS Key Exchange. Tried adding the GSK parms in the WSTOMENV member but it's not appearing in the JES output. Is there something special that needs to be done?
These are the parms attempted to add:
GSK_SERVER_ALLOWED_KEX_ECURVES=002500240023002100300029
#
GSK_CLIENT_EPHEMERAL_DH_GROUP_SIZE=2048
#
GSK_PEER_RSA_MIN_KEY_SIZE=2048
#
GSK_SERVER_EPHEMERAL_DH_GROUP_SIZE=2048
#
GSK_PEER_DH_MIN_KEY_SIZE=2048
Release : 18.1
Define environment variables using the export keyword in WSTOMENV, for example:
export GSK_PEER_DH_MIN_KEY_SIZE=2048