tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Caldarale, Charles R" <Chuck.Caldar...@unisys.com>
Subject RE: TLS+SSLv3 but no SSLv2
Date Fri, 22 Jan 2010 16:41:24 GMT
> From: Jens Neu [mailto:jens.neu@biotronik.com]
> Subject: TLS+SSLv3 but no SSLv2
> 
> Does this really mean that I can not allow a "TLSv1+SSLv3" setting
> while forbidding SSLv2?

I was under the impression that specifying TLSv1 would include SSLv3, since there are provisions
within TLS to handle SSLv3.  Note that TLSv1.0 - TLVv1.2 and SSLv3 all have the same major
version number.

 - Chuck


THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus
for use only by the intended recipient. If you received this in error, please contact the
sender and delete the e-mail and its attachments from all computers.


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message