Return-Path: Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: (qmail 49032 invoked from network); 24 Feb 2006 03:06:50 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 24 Feb 2006 03:06:50 -0000 Received: (qmail 84839 invoked by uid 500); 24 Feb 2006 03:06:36 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 84818 invoked by uid 500); 24 Feb 2006 03:06:36 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 84804 invoked by uid 99); 24 Feb 2006 03:06:36 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 23 Feb 2006 19:06:36 -0800 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: domain of jak-tomcat-user@m.gmane.org designates 80.91.229.2 as permitted sender) Received: from [80.91.229.2] (HELO ciao.gmane.org) (80.91.229.2) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 23 Feb 2006 19:06:35 -0800 Received: from list by ciao.gmane.org with local (Exim 4.43) id 1FCTHH-0004ES-6P for users@tomcat.apache.org; Fri, 24 Feb 2006 04:05:55 +0100 Received: from pool-71-107-250-178.lsanca.dsl-w.verizon.net ([71.107.250.178]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 24 Feb 2006 04:05:55 +0100 Received: from wbarker by pool-71-107-250-178.lsanca.dsl-w.verizon.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 24 Feb 2006 04:05:55 +0100 X-Injected-Via-Gmane: http://gmane.org/ To: users@tomcat.apache.org From: "Bill Barker" Subject: Re: Tomcat 4 - Disable low level cipher Date: Thu, 23 Feb 2006 19:06:03 -0800 Lines: 31 Message-ID: References: <55ab4200602231352s77f1d2b2he8e8461dcb58ad03@mail.gmail.com> <43FE30E9.3030909@apache.org> X-Complaints-To: usenet@sea.gmane.org X-Gmane-NNTP-Posting-Host: pool-71-107-250-178.lsanca.dsl-w.verizon.net X-MSMail-Priority: Normal X-Newsreader: Microsoft Outlook Express 6.00.2900.2180 X-RFC2646: Format=Flowed; Original X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180 Sender: news X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N "Mark Thomas" wrote in message news:43FE30E9.3030909@apache.org... > Chad Joubert wrote: >> I have tried >> several different string combinations using commas and collon dilimiters >> in >> the server.xml file (ciphers=3D"* >> ALL:!aNULL:!ADH:!eNULL:!LOW:!EXP:RC4+RSA:+HIGH:+MEDIUM*") but nothing >> seem= >> s >> to be working. I have searched and found a couple other people asking >> the >> same question but no solutions. > > These are not the Java names for the cipher suites (I think they might > be from openssl). You need to use the ones in > http://java.sun.com/j2se/1.4.2/docs/guide/security/jsse/JSSERefGuide.html > > The list should be comma delimiited. > Urm, I think you're dreaming of TC 3 or 5 ;-). TC 4 only allows a limited set of the possible Coyote-SSL settings, and ciphers isn't one of them (mostly from lack of interest from anybody to port the forward-all-attributes logic to TC 4 :). > Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org For additional commands, e-mail: users-help@tomcat.apache.org