tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bill Barker" <wbar...@wilshire.com>
Subject Re: Tomcat 4 - Disable low level cipher
Date Fri, 24 Feb 2006 03:06:03 GMT

"Mark Thomas" <markt@apache.org> wrote in message 
news:43FE30E9.3030909@apache.org...
> Chad Joubert wrote:
>> I have tried
>> several different string combinations using commas and collon dilimiters 
>> in
>> the server.xml file (ciphers=3D"*
>> ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM*")  but nothing 
>> seem=
>> s
>> to be working.  I have searched and found a couple other people asking 
>> the
>> same question but no solutions.
>
> These are not the Java names for the cipher suites (I think they might
> be from openssl). You need to use the ones in
> http://java.sun.com/j2se/1.4.2/docs/guide/security/jsse/JSSERefGuide.html
>
> The list should be comma delimiited.
>

Urm, I think you're dreaming of TC 3 or 5 ;-).

TC 4 only allows a limited set of the possible Coyote-SSL settings, and 
ciphers isn't one of them (mostly from lack of interest from anybody to port 
the forward-all-attributes logic to TC 4 :).

> Mark 




---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message