On 30/10/2014 16:38, Utkarsh Dave wrote: > Hello all, > > To avoid poodle vulnerability we are trying to disable SSL v3 and all its > versions through below configuration. > > <Connector port="8443" protocol="org.apache.coyote.http11.Http11Protocol" > maxThreads="150" SSLEnabled="true" scheme="https" secure="true" > clientAuth="false" sslProtocols = "TLSv1" /> > > > Can you please tell me if we are missing anything and how can we make this > thing work?
http://wiki.apache.org/tomcat/Security/POODLE Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
