=============================================================================== C:E Secure Client 1.4.00 iFix 3 Maintenance - April 2015 =============================================================================== This is a full install image of the Secure Client and includes the fixes described below. Summary of Fixes by FixPack (Latest FixPack first) ======================================================================= Summary of Fixes for v 1.4.00 iFix 3 Build 46 (April 2015) ======================================================================= Defect / APAR Description No RTC - RC4 Ciphers now turned off by default, resolving the Bar Mitzvah RC4 advisory CVE-2015-2808. No RTC - SSLv3 now turned off by default, resolving POODLE advisory CVE-2014-3566. The tlsonly parm has been deprecated. To allow SSL sessions and/or RC4 ciphers, edit the SecureClient.lax file in the installation directory and change the line which says: lax.nl.java.option.additional=-DCONFIG_DIR=./conf -DLOGFILE=./log/logfile to lax.nl.java.option.additional=-DCONFIG_DIR=./conf -DLOGFILE=./log/logfile -DallowSSL=true -DallowSSL=true RTC442203 / IT08369 - Client not executing schedules at correct time Customer discovered that when a task was scheduled to run multiple times in a day, the start time "drifted" several minutes from the intented time. Resolution: Now always sync up with the current time before scheduling the next event. ======================================================================= Summary of Fixes for v 1.4.00 iFix 2 Build 40 (December 2014) ======================================================================= Defect / APAR Description No RTC - Support turning off SSLv3 by adding -Dtlsonly=true to Java startup line. Resolves POODLE advisory CVE-2014-3566. To allow only TLS sessions, edit the SecureClient.lax file in the installation directory and change the line which says: lax.nl.java.option.additional=-DCONFIG_DIR=./conf -DLOGFILE=./log/logfile to lax.nl.java.option.additional=-DCONFIG_DIR=./conf -DLOGFILE=./log/logfile -Dtlsonly=true ======================================================================= Summary of Fixes for v 1.4.00 iFix 1 Build 32 (November 2013) ======================================================================= Defect / APAR Description No RTC - Upgrade to IBM JRE1.6 SR14 and InstallAnywhere 2010.