All the SSL and TLS versions older than 1.2 are having lots of known vulnerabilities like POODLE (CVE-2014-3566), That’s why the latest browsers have removed support for these vulnerable protocols. We also recommend moving your server to use TLS versions and specifically to TLS 1.2. This tutorial will help you to enable TLS 1.2 and TLS 1.3 in mod_ssl and Apache servers.
Java Development Kit (I used 8u144 jdk-8u144-linux-x64.tar.gz) Fusion Middleware Infrastructure Installer (1.4G) Remember, you will need the infrastructure version of WebLogic if you plan to do an Oracle Forms and Reports Services installation. The following actions should be performed by the 'root' user. Jul 28, 2017 Oracle has released “ Java Platform, Standard Edition 8 Update 144 ” also known as ‘Java Runtime Environment Version 8.0 Update 144’. This release contains fixes for security vulnerabilities. Aug 10, 2020 Download Java SE Development Kit 14 for Windows to build applications, applets, and components using the Java programming language. Java SE Development Kit 14 has had 2 updates within the past 6.
Prerequisites
To enable TLS 1.3 you must have Apache version 2.4.38 or higher on your system. Also search for the SSL virtual host configuration file your system.
Generally Debian based systems have there files under /etc/apache2/sites-enabled directory.
Jdk 8u144 Windows X64
And the Redhat (RPM) based system have there configuration in /etc/httpd/conf/httpd.conf file or a sperate file under /etc/httpd/conf.d directory.
Jdk-8u144-linux
Jdk-8u144-windows-x64 - Accept License and agreement - If you have a Windows 64 bit machine click on 'Windows x64 197.78 MB jdk-8u144-windows-x64.exe' - If you have a Windows 32 bit machine click on 'Windows x86 190.94 MB jdk-8u144-windows-i586.exe' - Else click on which Operating System(OS) you use - Install the software keep clicking on. Download Java SE Development Kit (JDK) - The basic resources you need in order to create apps in Java, including the Java runtime environment, libraries, code samples and demo apps.
Enable TLS 1.2 only in Apache
First, edit the virtual host section for your domain in the Apache SSL configuration file on your server and add set the SSLProtocol as followings. This will disable all older protocols and your Apache server and enable TLSv1.2 only.
The minimal Apache virtual host with SSL looks like:
Enable TLS 1.3 & 1.2 Both in Apache
The Apache version 2.4.38 or higher versions support TLS v1.3. You must upgrade Apache packages before enabled TLS 1.3 in SSL settings.
The simplest Apache VirtualHost with SSL looks like below
After making changes in your configuration file, restart the Apache service to apply new settings.