WebLogic

How to Patch Java in WebLogic

by Dan Iverson
December 9, 2015April 3, 2020
1 Comment

With the recent attacks on SSL, WebLogic and Java, I wanted to give an overview on how you patch Java for your WebLogic instances. When… Read More »How to Patch Java in WebLogic

How to Apply WebLogic Patches

by Dan Iverson
December 7, 2015April 3, 2020
12 Comments

Oracle has released a patch for the latest CVE against WebLogic, so I wanted to walk though the steps to apply the patch to WebLogic… Read More »How to Apply WebLogic Patches

Smart v. Dumb Load Balancing

by Dan Iverson
December 1, 2015April 3, 2020
6 Comments

Setting up Load Balancing is common for production systems. Lately, I have seen a few organizations set up their load balancing so they end undoing… Read More »Smart v. Dumb Load Balancing

#4 – Demo’s, PUM and PI

by Dan Iverson
November 27, 2015February 14, 2016

In episode 4, Dan and Kyle talk about Demo environments and why the traditional need for Demo’s may change, the PeopleSoft Update Manager, and how… Read More »#4 – Demo’s, PUM and PI

#3 – HTTPS and WebLogic

by Dan Iverson
November 20, 2015February 14, 2016

In episode 3 of The PeopleSoft Administrator Podcast, Dan and Kyle talk about HTTPS. We discuss what HTTPS is and how to implement HTTPS with… Read More »#3 – HTTPS and WebLogic

WebLogic Security Alert

by Dan Iverson
November 12, 2015April 3, 2020

Oracle released a WebLogic security alert (CVE-2015-4852) yesterday that affects the T3 and T3S protocol. The patch will be released soon, but there are some… Read More »WebLogic Security Alert

Disabling PS_TOKEN with PSEatCookies Filter

by Kyle Benson
November 11, 2015April 3, 2020
2 Comments

As many of you have probably heard, there has been much discussion this year regarding vulnerabilities in PeopleSoft’s PS_TOKEN. The talk all started after a… Read More »Disabling PS_TOKEN with PSEatCookies Filter

Enhanced Security with JSSE/JCE on WebLogic

by Dan Iverson
November 5, 2015April 3, 2020
1 Comment

We are setting up some new web servers and need to implement strong security on them. By default, a fresh PIA install on WebLogic 11g… Read More »Enhanced Security with JSSE/JCE on WebLogic

PSEatCookies

by Dan Iverson
June 22, 2015April 3, 2020

From Kyle Benson: a servlet filter to remove PS_TOKEN from the response cookie: One option is to simply disable the PS_TOKEN, and therefore prevent this… Read More »PSEatCookies

Limit PeopleSoft Vulnerabilities

by Dan Iverson
June 9, 2015April 3, 2020

Last week a presentation at Hack in the Box, “Oracle PeopleSoft Applications are Under Attack”, focused on vulnerabilities in PeopleSoft applications. The presentation showed a… Read More »Limit PeopleSoft Vulnerabilities