It's correct that Java7 is sufficient for tls1.2 but to be more secure and use recent cipher suits I recommend use java8 which is the only maintained version by Oracle > Am 15.12.2016 um 16:55 schrieb Hrivnak, Dan <dan_hriv...@gallup.com>: > > > > On 12/15/16, 9:19 AM, "frank.pien...@materna.de" <frank.pien...@materna.de> > wrote: > > > > > > Q1 use recent java8 Version if you want secure TLS 1.3 choose right > cipher. > > > > > https://urldefense.proofpoint.com/v2/url?u=https-3A__wiki.apache.org_tomcat_Security_Ciphers&d=DgIFAg&c=9qXE_JLypiubC-9T_PAPwg&r=Xhx3wY6yyvp3Qb9jYE01li0hTn39VkdJ0f9dlbDc57Y&m=Xrdrm6GVqFwIoc_CKnTdYIIAsjL2s5HVajfxaWvZkvU&s=bWb7vf4IPQvPG9eAlrjJ-wX4Pxc8w-NTowuTmC2bL5g&e= > > q2 > > Jre8u122+Tomcat 7.0.73 > > Q3 Upgrade should be easy and you need it for Tls1.2 > > Question 1. DO we need to upgrade Tomcat Version and Java Version, if yes > > which version we need to choose. > > > > Refereed the Tomcat Site > "https://urldefense.proofpoint.com/v2/url?u=http-3A__tomcat.apache.org_whichversion.html&d=DgIFAg&c=9qXE_JLypiubC-9T_PAPwg&r=Xhx3wY6yyvp3Qb9jYE01li0hTn39VkdJ0f9dlbDc57Y&m=Xrdrm6GVqFwIoc_CKnTdYIIAsjL2s5HVajfxaWvZkvU&s=6nGWeTS-AZoQeyKqTiC6iHB_qCDZa0q79bz0jn0rCeQ&e= > ", > > will Tomcat Version 7.0.34 support jdk 1.8? > > > > Question 2. Which is the best approach Tomcat Version 7.0.34 + jdk 1.7 or > > jdk 1.8? > > > > Question 3. Do we need to upgrade Tomcat version to new one, if yes then > > which is the best working solution to achieve the requirement mentioned > > above? > > > > --> Sorry, not sure how to quote the above. Tomcat shouldn’t have anything to > do with the TLS version supported by Java. To support TLSv1.2 you will need > to upgrade Java to at least version 7. > > > > I hope that helps, > > Daniel Hrivnak > > > > > > Thanks and Regards, > > Dhanesh M. > >
--------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
