cxf-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Willem Jiang <willem.ji...@gmail.com>
Subject Re: git commit: Disallow SSLv3 by default in Jetty
Date Wed, 22 Oct 2014 08:03:00 GMT
Hi Colm,

If I ran below code with Oracle JDK, I can see SSLv2Hello, SSLv3 there.

SSLContext context = SSLContext.getInstance(“TSL”);
SSLEngine engine = context.createSSLEngine();
print engine.getEnabledProtocols() 

I guess we need to exclude the SSLv2Hello at the same time.

Regards,

--  
Willem Jiang

Red Hat, Inc.
Web: http://www.redhat.com
Blog: http://willemjiang.blogspot.com (English)
http://jnn.iteye.com (Chinese)
Twitter: willemjiang  
Weibo: 姜宁willem



On October 20, 2014 at 11:45:39 PM, coheigea@apache.org (coheigea@apache.org) wrote:

> > + if (!"SSLv3".equals(proto)) {
> + scf.addExcludeProtocols("SSLv3");
> + }


Mime
View raw message