Hi all,
Our security team find that there is high risk vulnerability – the BREACH vulnerability. This can be mitigated by disabling HTTP compression on the web server. We have to change the compression="on" to “off” in the server.xml on the web server. Please advise if the change impacts the system.
Our system information is:
BI: 4.1 SP2 P5
App Server: Tomcat7
OS: Windows 2008 R2 64bit
Database: Oracle 11g
Thanks.