Return-Path: X-Original-To: apmail-tomcat-users-archive@www.apache.org Delivered-To: apmail-tomcat-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 49FE718358 for ; Thu, 1 Oct 2015 04:52:58 +0000 (UTC) Received: (qmail 77618 invoked by uid 500); 1 Oct 2015 04:52:54 -0000 Delivered-To: apmail-tomcat-users-archive@tomcat.apache.org Received: (qmail 77557 invoked by uid 500); 1 Oct 2015 04:52:54 -0000 Mailing-List: contact users-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Users List" Delivered-To: mailing list users@tomcat.apache.org Received: (qmail 77544 invoked by uid 99); 1 Oct 2015 04:52:54 -0000 Received: from Unknown (HELO spamd3-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 01 Oct 2015 04:52:54 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd3-us-west.apache.org (ASF Mail Server at spamd3-us-west.apache.org) with ESMTP id 9B79E180970 for ; Thu, 1 Oct 2015 04:52:53 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd3-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 3.223 X-Spam-Level: *** X-Spam-Status: No, score=3.223 tagged_above=-999 required=6.31 tests=[FREEMAIL_ENVFROM_END_DIGIT=0.25, HTML_MESSAGE=3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.006, SPF_PASS=-0.001] autolearn=disabled Received: from mx1-eu-west.apache.org ([10.40.0.8]) by localhost (spamd3-us-west.apache.org [10.40.0.10]) (amavisd-new, port 10024) with ESMTP id Sd7WHApiDLaj for ; Thu, 1 Oct 2015 04:52:52 +0000 (UTC) Received: from BAY004-OMC2S9.hotmail.com (bay004-omc2s9.hotmail.com [65.54.190.84]) by mx1-eu-west.apache.org (ASF Mail Server at mx1-eu-west.apache.org) with ESMTPS id 39049206E3 for ; Thu, 1 Oct 2015 04:52:51 +0000 (UTC) Received: from BAY178-W14 ([65.54.190.125]) by BAY004-OMC2S9.hotmail.com over TLS secured channel with Microsoft SMTPSVC(7.5.7601.23008); Wed, 30 Sep 2015 21:52:43 -0700 X-TMN: [r/BDq5dbYbnY/XXef/cvXOu/2KDW9Awb] X-Originating-Email: [rksingh98@hotmail.com] Message-ID: Content-Type: multipart/alternative; boundary="_5a8317d8-ad71-4959-9b08-bf282cf51dcf_" From: Rahul Singh To: "users@tomcat.apache.org" Subject: logjam attacks in tomcat 7 Date: Thu, 1 Oct 2015 10:22:43 +0530 Importance: Normal MIME-Version: 1.0 X-OriginalArrivalTime: 01 Oct 2015 04:52:43.0830 (UTC) FILETIME=[025B0560:01D0FC05] --_5a8317d8-ad71-4959-9b08-bf282cf51dcf_ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Dear Tomcat Support Team=2CThanks for your continuous support. In our Application Tomcat V 7.0.54 is used. We are facing the problem of=20 "Server has a weak=2C ephemeral Diffie-Hellman public key ERR_SSL_WEAK_SERV= ER_EPHEMERAL_DH_KEY" In chrome browser. Tomcat server .xml have following configuration=2C which does not contain c= hipher=2C it means it used default cipher. =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D =3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Underline JAVA is : OpenJDK Runtime Environment (rhel-2.5.5.3.el6-x86_64 u7= 9-b14) So could ypu please assist me to understand the following things. 1- What value of default cipher is using in My application.2- Does it requi= re to update for working with lates Browser chrome and fixing the "Diffie-H= ellman" security issue. Regards=2CRahul kumar Singh = --_5a8317d8-ad71-4959-9b08-bf282cf51dcf_--