on 07-17-2019 6:13 PM
For security purposes, our site likes to keep Java library patches up to date. But SAP (Sybase) doesn't distribute patches for the Java runtime library (jre64) for already released ASE server versions (correct me if I'm wrong)
I know Java is used for install and uninstall tasks. And it's also used if it's enabled inside the ASE server (config param names "enable java" and "enable pci").
Looking at my ASE installation directory tree, it looks like Java is also used for the following services/utilities:
But if we're not doing any install/uninstall tasks, and if we have Java disabled inside the ASE server, and we're not using the above utilities, can we drop the jre64 directory?
If we dropped the Sybase jre64 directory, I guess we could try to change the SYBASE.sh setup file to point our central copy of the java runtime library. As new central java runtime libraries are rolled out (into new directory names), we could switch SYBASE.sh to point to the newest version (after some testing)
Re: Curious to know what security concern(s) to triggerred this question ?
It came up when an old jre32 directory got flagged as old vulnerable software that needed to be removed.
Thanks for the other info.
Ben
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Ben
Curious to know what security concern(s) to triggerred this question ?
On Unix ddlgen is a wrapper using SAP specific JAVA files. So repointing to your central copy will be rquired for it to work.
dbisql on server side is rarely / not really used that much -- at least on Unix hosts.
There is one more product ASE/DBA Cockpit that uses JAVA.
And as you said you are not using java inside the ASE.
To do this safely :
Rename the folder in question with prefix and suffix of zzz_<TheFolder>_zzz (not to clutter your ls -l displays). If some app or runtime complains about the absence, you can investigate and restore the old name in blink.
HTH
Avinash
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
83 | |
23 | |
11 | |
9 | |
8 | |
5 | |
5 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.