After upgrading to CXF 3.0.4, my application (as a server) can no longer receive messages from a client that can only support TLS 1.0 (not TLS 1.1 and 1.2). In my CXF configuration, the following cipherSuiteFilter is used:
<sec:cipherSuitesFilter> <sec:include>.*_EXPORT_.*</sec:include> <sec:include>.*_EXPORT1024_.*</sec:include> <sec:include>.*_WITH_3DES_.*</sec:include> <sec:include>.*_WITH_AES_.*</sec:include> <sec:include>.*_WITH_NULL_.*</sec:include> <sec:exclude>.*_DH_anon_.*</sec:exclude> </sec:cipherSuitesFilter> Does CXF 3.0.4 disable TLS 1.0 by default? Is there anything that I can do to make my application be able to receive TLS 1.0 client requests? Thanks a lot for any help! -- View this message in context: http://cxf.547215.n5.nabble.com/CXF-3-0-4-server-cannot-receive-message-from-TLS1-0-client-tp5756863.html Sent from the cxf-user mailing list archive at Nabble.com.