Nothing helped much. Please let me know how can i disable SSL in Tomcat
6.0.37.
I tried below configuration in server.xml on Tomcat 6.0.37
<Connector port="8443" protocol="org.apache.coyote.http11.Http11Protocol"
maxThreads="150" SSLEnabled="true" scheme="https" secure="true"
clientAuth="false" sslProtocols = "TLSv1"
The same with sslEnabledProtocols instead of sslProtocols worked for
Tomcat 7. I am also following solution at
https://access.redhat.com/solutions/1232233
-Regards
Utkarsh
On Thu, Oct 30, 2014 at 10:30 PM, Mark Thomas <ma...@apache.org> wrote:
> On 30/10/2014 16:38, Utkarsh Dave wrote:
> > Hello all,
> >
> > To avoid poodle vulnerability we are trying to disable SSL v3 and all its
> > versions through below configuration.
> >
> > <Connector port="8443" protocol="org.apache.coyote.http11.Http11Protocol"
> > maxThreads="150" SSLEnabled="true" scheme="https"
> secure="true"
> > clientAuth="false" sslProtocols = "TLSv1" />
> >
> >
> > Can you please tell me if we are missing anything and how can we make
> this
> > thing work?
>
> http://wiki.apache.org/tomcat/Security/POODLE
>
> Mark
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
>
