On 11/05/18 03:35, Baron Fujimoto wrote:
> Yes, the host is behind an F5 load balacer, but AFAIK it should be passing
> all the TLS/SSL directly to the real host to handle.
You don't say which Tomcat version is being used. I assume one of the
8.5.x versions since the 8.5.x docs are referenced.
8.
Yes, the host is behind an F5 load balacer, but AFAIK it should be passing
all the TLS/SSL directly to the real host to handle.
On Thu, May 10, 2018 at 11:23:44PM +, Scott Hoenigman wrote:
> Are you using a load balancer?
>
>
>
>Sent from my T-Mobile 4G LTE Device
>
>
> Original messag
Are you using a load balancer?
Sent from my T-Mobile 4G LTE Device
Original message
From: David Wall
Date: 5/10/18 6:15 PM (GMT-06:00)
To: users@tomcat.apache.org
Subject: Re: configuring ciphers for SSL Labs server test
We're doing good with this:
On 5/10/18
We're doing good with this:
protocols="TLSv1.1, TLSv1.2" honorCipherOrder="true"
ciphers="TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
TLS_ECDHE
I'm trying to improve our grade on SSL Labs SSL server test[1] for our
Tomcat configuraton. Currently, their report caps our grade at B because,
"This server does not support Authenticated encryption (AEAD) cipher
suites". They report that we support the following cipher suites:
# TLS 1.2
TLS_ECDH
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Olaf,
On 5/9/18 8:39 PM, Olaf Kock wrote:
>
> On 09.05.2018 17:09, James H. H. Lampert wrote:
>> Question:
>>
>> Is there an easy way to bump a working Tomcat installation from
>> one release to another, without benefit of Linux "apt-get" or
>> "y
On 10/05/18 17:10, Violeta Georgieva wrote:
> 2018-05-10 19:04 GMT+03:00 Violeta Georgieva :
>>
>> Hi,
>>
>> 2018-05-10 19:00 GMT+03:00 Mark Thomas :
>>>
>>> On 10/05/18 16:27, John Palmer wrote:
>>>
>>>
>>>
or am I missing (or just ignorant of ) something?
>>>
>>> Seems reasonable to me look
2018-05-10 19:04 GMT+03:00 Violeta Georgieva :
>
> Hi,
>
> 2018-05-10 19:00 GMT+03:00 Mark Thomas :
> >
> > On 10/05/18 16:27, John Palmer wrote:
> >
> >
> >
> > > or am I missing (or just ignorant of ) something?
> >
> > Seems reasonable to me looking at the code. Give me a few minutes to
> > tes
Hi,
2018-05-10 19:00 GMT+03:00 Mark Thomas :
>
> On 10/05/18 16:27, John Palmer wrote:
>
>
>
> > or am I missing (or just ignorant of ) something?
>
> Seems reasonable to me looking at the code. Give me a few minutes to
> test it and - assuming all is well - I'll make the change.
Isn't it intent
On 10/05/18 16:27, John Palmer wrote:
> or am I missing (or just ignorant of ) something?
Seems reasonable to me looking at the code. Give me a few minutes to
test it and - assuming all is well - I'll make the change.
Mark
-
On 10/05/18 16:21, i...@flyingfischer.ch wrote:
> Thanks for the two new configurable options relaxedPathChars and
> relaxedQueryChars.
>
> https://bz.apache.org/bugzilla/show_bug.cgi?id=62273
>
> However, since these two elements will be nested in server.xml, adding
>
> "<>"
>
> will result in
while it's documented that the styling will be lost when both settings for
ServerReport/ServerInfo are set to false... eg by adding this to server.xml:
(and I confirmed this recently)
from looking at the source for ErrorReportValve for tomcat 7.0.78 it
LOOKS like this would be easy to fix:
(h
Thanks for the two new configurable options relaxedPathChars and
relaxedQueryChars.
https://bz.apache.org/bugzilla/show_bug.cgi?id=62273
However, since these two elements will be nested in server.xml, adding
"<>"
will result in an invalid XML and a failing reboot of tomcat.
The instructions qu
13 matches
Mail list logo