Return-Path: 
 <dev-return-31882-apmail-hc-dev-archive=hc.apache.org@hc.apache.org>
X-Original-To: apmail-hc-dev-archive@www.apache.org
Delivered-To: apmail-hc-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id EBC3710ACF
	for <apmail-hc-dev-archive@www.apache.org>;
 Tue, 27 Jan 2015 10:48:34 +0000 (UTC)
Received: (qmail 41234 invoked by uid 500); 27 Jan 2015 10:48:35 -0000
Delivered-To: apmail-hc-dev-archive@hc.apache.org
Received: (qmail 41196 invoked by uid 500); 27 Jan 2015 10:48:35 -0000
Mailing-List: contact dev-help@hc.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@hc.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@hc.apache.org>
List-Post: <mailto:dev@hc.apache.org>
List-Id: <dev.hc.apache.org>
Reply-To: "HttpComponents Project" <dev@hc.apache.org>
Delivered-To: mailing list dev@hc.apache.org
Received: (qmail 41183 invoked by uid 99); 27 Jan 2015 10:48:35 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 27 Jan 2015 10:48:35 +0000
Date: Tue, 27 Jan 2015 10:48:35 +0000 (UTC)
From: "Oleg Kalnichevski (JIRA)" <jira@apache.org>
To: dev@hc.apache.org
Message-ID: <JIRA.12769205.1421904995000.183153.1422355715189@Atlassian.JIRA>
In-Reply-To: <JIRA.12769205.1421904995000@Atlassian.JIRA>
References: <JIRA.12769205.1421904995000@Atlassian.JIRA>
 <JIRA.12769205.1421904995243@arcas>
Subject: [jira] [Commented] (HTTPCLIENT-1600) Enable supported TLS protocols
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


    [ https://issues.apache.org/jira/browse/HTTPCLIENT-1600?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14293335#comment-14293335 ] 

Oleg Kalnichevski commented on HTTPCLIENT-1600:
-----------------------------------------------

What about non-Oracle JSSE providers that might also disable TLSv1.1 and TLSv1.2 for some reason? I personally do not think this kind of code belongs to a general purpose library like HC.

David, what is the reason for your reluctance to set SSL protocol versions in your application code?

Oleg

> Enable supported TLS protocols
> ------------------------------
>
>                 Key: HTTPCLIENT-1600
>                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1600
>             Project: HttpComponents HttpClient
>          Issue Type: Improvement
>          Components: HttpClient
>    Affects Versions: 4.4 Final
>            Reporter: David
>
> https://github.com/apache/httpclient/commit/a3a8def3ab99174468930b99dc897dd488968c41 reverts a change that enabled TLSv1.1 and TLSv1.2 in java 7. If the 'https.protocols' property has not been set then httpclient should enable all supported TLS protocols. The result of this change will be that TLSv1.1 and TLSv1.2 will be used in java 7.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org
For additional commands, e-mail: dev-help@hc.apache.org