Hi,
using tomcat-embed 9.x I was able to customize my protocol handler like
this:
AbstractHttp11Protocol httpHandler = ((AbstractHttp11Protocol)
connector.getProtocolHandler());
httpHandler.setSSLHonorCipherOrder(true);
httpHandler.setUseServerCipherSuitesOrder(true);
Switched to 10.1.1 now an
On 06/12/2022 08:50, Torsten Krah wrote:
Hi,
using tomcat-embed 9.x I was able to customize my protocol handler like
this:
AbstractHttp11Protocol httpHandler = ((AbstractHttp11Protocol)
connector.getProtocolHandler());
httpHandler.setSSLHonorCipherOrder(true);
httpHandler.setUseServerCipherS
> Now there is a single method. This should
> do what you need:
>
> SSLHostConfig[] sslHostConfigs = httpHandler.findSslHostConfigs();
>
> for (SSLHostConfig sslHostConfig : sslHostConfigs) {
> sslHostConfig.setHonorCipherOrder(true);
> }
That is even better now, thanks.
>
>
> Mark
To
On Mon, Dec 05, 2022 at 03:37:59PM -0500, Christopher Schultz wrote:
> On 12/5/22 15:03, Cathy Spears wrote:
> > Using Tomcat 8.5 and 9.0 with 32-bit Apache 2.4 and mod_jk. Are there
> > benefits to using mod_proxy instead of mod_jk? Also, is there a
> > planned end of life for mod_jk or will it co
Mark,
On 12/6/22 08:48, Mark H. Wood wrote:
On Mon, Dec 05, 2022 at 03:37:59PM -0500, Christopher Schultz wrote:
On 12/5/22 15:03, Cathy Spears wrote:
Using Tomcat 8.5 and 9.0 with 32-bit Apache 2.4 and mod_jk. Are there
benefits to using mod_proxy instead of mod_jk? Also, is there a
planned e
IMHO, switching to mod_proxy, and using it over SSL, is by far better than
using mod_jk or mod_ajp, primarily as mod_proxy allows for secure proxy
connection, whereas mod_jk and mod_ajp aren't "secure" as they are not
encrypted channels.
Again, just my .02 worth.
Dream * Excel * Explore * Insp
Hi all. We use Tomcat 9.0.63 and are wondering if it's vulnerable to
CVE-2022-42920?
I don't see any bcel jar files, like bcel-6.0.jar, but when I scanned all jars
for bcel, I found the following 22 classes with bcel in their package name in
tomcat-coyote.jar:
org/apache/tomcat/util/bcel/Const.
On 06/12/2022 19:07, Jerry Lampi wrote:
Hi all. We use Tomcat 9.0.63 and are wondering if it's vulnerable to
CVE-2022-42920?
Tomcat is not exposed to this vulnerability.
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomc
Jon,
On 12/6/22 12:36, jonmcalexan...@wellsfargo.com.INVALID wrote:
IMHO, switching to mod_proxy, and using it over SSL, is by far better than using mod_jk
or mod_ajp, primarily as mod_proxy allows for secure proxy connection, whereas mod_jk and
mod_ajp aren't "secure" as they are not encrypte
What, pray tell, is an encrypted AJP connection? Are you talking AJP over an
SSH Tunnel (Stunnel)?
Dream * Excel * Explore * Inspire
Jon McAlexander
Senior Infrastructure Engineer
Asst. Vice President
He/His
Middleware Product Engineering
Enterprise CIO | EAS | Middleware | Infrastructure Soluti
Hello,
I'm using spring boot with eureka and openfeign to communicate between
services A and B.
When a send a request from A to B getting:
2022-12-06 22:30:26.634 ERROR 6352 --- [o-8081-Acceptor]
org.apache.tomcat.util.net.NioEndpoint : Error setting socket options
java.net.SocketException: I
11 matches
Mail list logo
