On 10/16/17, 12:17 PM, Charles Wilt wrote:
What do you mean, where JSSE "gets its ciphers"?

I should think my meaning should be self-explanatory:

Does JSSE on a Midrange JRE implement its ciphers internally, as with any normal JRE? Or does it somehow defer the implentation to the OS's cipher support?

The reason being that, to rephrase what I said, I have reason to believe that the problem one of our customers experienced was the result of the JRE claiming (to a Tomcat server it was running) that it could support ECDHE ciphers it couldn't actually implement when asked (by a browser) to do so.

Whether there's a way to remedy this within an OS release is irrelevant; the immediate problem was solved by adding a "ciphers" clause to the relevant connection tag in the Tomcat server's server.xml file.


As an Amazon Associate we earn from qualifying purchases.

This thread ...


Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2022 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.