> From: Mike Gardiner [mailto:[EMAIL PROTECTED] > Subject: Configuring Cipher Suites with Tomcat 6 > > How can I limit the cipher suites used by Tomcat for an SSL > connection? > > I tried setting SSLCipherSuite="SOME_CIPHER" > > <Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true" > maxThreads="150" scheme="https" secure="true" > clientAuth="false" sslProtocol="SSLv3" keystoreType="luna" > keyAlias="tomcat" keystore="/.keystore" > SSLCipherSuite="SSL_RSA_WITH_3DES_EDE_CBC_SHA"/>
Judging from the other attributes in your post, you're using the Java connector, not APR. But according to the doc, the proper attribute for the non-APR <Connector> element is ciphers, not SSLCipherSuite (can't say that I've ever actually tried it). - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]