Oracle JDK 7 supports GCM since version 7u191 (https://www.oracle.com/technetwork/java/javase/2col/7u191-bugfixes-4489527.html)
In the openJDK Bugtracker, they mention they fixed it. (https://bugs.openjdk.java.net/browse/JDK-8200684)
But I checked with the latest OpenJDK 7 241 version, and still no AES GCM Cipher Suites. I need it in an old application for TLS 1.2 support with the GCM cipher suites. OpenJDK 7 btw. supports TLS 1.2 by default since a longer time.
I even checked the source code, but cannot find the backport commits. Is it an Oracle-Only fix?
Related
Any know vulnerability with targetSDK 22?
I was using targetSDK 22 with Android 5.1, since there are no more security updates release by googles for Android 5.1.
I just upgrade to my Android to 7? Will it address all my vulnerability as OS 7 will have latest security updates?
You should target the latest sdk available. You can keep your min sdk low but the target should be always updated.
We're using AWS SDK .NET for getting files from AWS S3 storage. When the application was implemented a few years ago, the AWS was only supporting TLS 1.0. Now hopefully it's supporting TLS 1.2. I'd like to know which version and where I can download the library/packages. What's the minimum requirements for the .NET Framework? We're using the AmazonS3Client to handle the underlining connection to the S3 storage account.
Found the correct version that will be supporting the TLS 1.2.
https://aws.amazon.com/blogs/developer/upgrade-aws-sdk-for-net-for-latest-tls-protocols/
My question is simple. My server's operating system is Windows Server 2012 r2 and all updates were made on it.
When I run the iiscrypto I couldn't find TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 cipher suite. To find this, should I use Windows server 2016 or is there another way to get it?
Microsoft has a docs page that lists all the Windows versions and their cipher suites.
First server version to support this cipher suite is indeed Windows Server 2016.
Unfortunately Windows 2012 Server doesn't support tls-ecdhe-rsa-with-aes-256-gcm-sha384 or 256/128 Ciphers.
I landed in a tricky situation. I am working on a legacy .NET application that used ADODB (only 32bit dlls available) in conjunction with Oracle.DataAccess (32/64 bit available) which was running earlier on 2003 server with some version of Oracle (I am not sure on the version number).
Now with minimal changes I need to port this to work on 2012 server (64bit) and Oracle 11g with .NET 4.0. When I use the 64bit of Oracle client, the system is failing at ADODB. When I am using 32bit Oracle client, it says The provider is not compatible with the version of Oracle client.
The environment / tools used are:
Oracle 11g, ODP.NET, ADODB, Windows 2012 (64bit), .NET 4.0
Is there a way to solve this riddle?
Edit :
I tried with System.Data.OracleClient instead of ODP.NET I got the following exception
System.InvalidOperationException: Attempt to load Oracle client libraries threw BadImageFormatException. This problem will occur when running in 64 bit mode with the 32 bit Oracle client components installed.
I am using Toad for Oracle Xpert 10.1.1.8 on Win 7 64bit operating system. I have installed Oracle 11g 64bit client. I am getting this error: Cannot load OCI DLL: C:\oracle\product\11.1.0\oci.dll. I googled this error and found TOAD only runs on 32bit Oracle Client. Is there any way to run TOAD on 64bit Oracle Client?
As per the knowledge article on Quest Support base
Toad for Oracle versions prior to 11.6 cannot support a 64-bit Oracle
Client due to limitations in Delphi programming language used in some
of Toads components.
Versions 11.6 onwards are fully 64-bit compliant. There is now a
64-bit installer and 32-bit installer. Please note that you should
install a 64-bit Oracle client for the 64-bit Toad installation and a
32-bit Oracle Client for the 32-bit installation.
For 11.5 and below, a 32-bit Oracle client must be installed