Mark, On 11/24/15 12:36 PM, Mark Robinson wrote: > I'm having this problem with TLS in Firefox and Chrome. Some of my > requests are failing with an SSL MAC Bad Read error. I'm using Tomcat > 8.0.24 on Java 8.0_u66 / Ubuntu 14.04. So it works fine with IE, and > if I disable some ciphers then it works. > > If I disable these ciphers TLS_RSA_WITH_AES_128_GCM_SHA256, > TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256, > TLS_DHE_RSA_WITH_AES_128_GCM_SHA256, then it works just fine. > > I've tried installing the Unlimited policy file. > > Has anyone else experienced this? Is there a known problem with these > ciphers?
When your config isn't working, what does your <Connector> configuration look like? Remember to sanitize the config to remove any secrets. Also, are you using any related system properties to control JSSE, etc.? -chris --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
