=============================================================================== C:E Secure Client 1.4.00 iFix 2 Maintenance - December 2014 =============================================================================== This is a full install image of the Secure Client and includes the fixes described below. Summary of Fixes by FixPack (Latest FixPack first) ======================================================================= Summary of Fixes for v 1.4.00 iFix 2 Build 40 (December 2014) ======================================================================= Defect / APAR Description No RTC - Support turning off SSLv3 by adding -Dtlsonly=true to Java startup line. Resolves POODLE advisory CVE-2014-3566. To allow only TLS sessions, edit the SecureClient.lax file in the installation directory and change the line which says: lax.nl.java.option.additional=-DCONFIG_DIR=./conf -DLOGFILE=./log/logfile to lax.nl.java.option.additional=-DCONFIG_DIR=./conf -DLOGFILE=./log/logfile -Dtlsonly=true ======================================================================= Summary of Fixes for v 1.4.00 iFix 1 Build 32 (November 2013) ======================================================================= Defect / APAR Description No RTC - Upgrade to IBM JRE1.6 SR14 and InstallAnywhere 2010.