tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Caldarale, Charles R" <Chuck.Caldar...@unisys.com>
Subject RE: TLS is not working in 6.0.37, 7.0.42, 7.0.47
Date Fri, 03 Jan 2014 05:45:32 GMT
> From: Mudassir Aftab [mailto:withmudassir@gmail.com] 
> Subject: Re: TLS is not working in 6.0.37, 7.0.42, 7.0.47

> Should i use following APR connector attribute ?
>    <Connector port="8443"
>            protocol="org.apache.coyote.http11.Http11AprProtocol"
>            maxThreads="200"
>            sslProtocol="TLSv1" sslEnabledProtocols="TLSv1.2"
>            clientAuth="false"
>            ciphers="AES256-SHA256"
>            scheme="https" secure="true" SSLEnabled="true"
>            SSLCertificateFile="p.pem"
>            SSLCertificateKeyFile="key.pem"
>            SSLCACertificateFile="AdminCA1.pem" />

For the third time, the APR <Connector> has no sslProtocol nor sslEnabledProtocols attributes;
the proper ones for specifying the protocol and encryption algorithms are SSLProtocol and
SSLCipherSuite, respectively.  For the last time, read the doc:
http://tomcat.apache.org/tomcat-7.0-doc/config/http.html#SSL_Support_-_APR/Native

(If you don't start paying attention to the responses you're getting, you will end up just
being ignored.)

 - Chuck


THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus
for use only by the intended recipient. If you received this in error, please contact the
sender and delete the e-mail and its attachments from all computers.


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@tomcat.apache.org
For additional commands, e-mail: users-help@tomcat.apache.org


Mime
View raw message