On 10/16/17, 12:17 PM, Charles Wilt wrote:
What do you mean, where JSSE "gets its ciphers"?

I should think my meaning should be self-explanatory:

Does JSSE on a Midrange JRE implement its ciphers internally, as with any normal JRE? Or does it somehow defer the implentation to the OS's cipher support?

The reason being that, to rephrase what I said, I have reason to believe that the problem one of our customers experienced was the result of the JRE claiming (to a Tomcat server it was running) that it could support ECDHE ciphers it couldn't actually implement when asked (by a browser) to do so.

Whether there's a way to remedy this within an OS release is irrelevant; the immediate problem was solved by adding a "ciphers" clause to the relevant connection tag in the Tomcat server's server.xml file.

--
JHHL

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Follow-Ups:
Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2022 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.