Re: sslHostConfig and ciphers

Wed, 08 Mar 2023 00:38:12 -0800 



On 08/03/2023 07:45, l...@kreuser.name wrote:

Beware Jon,


Am 08.03.2023 um 07:56 schrieb jonmcalexan...@wellsfargo.com.invalid 
<jonmcalexan...@wellsfargo.com.INVALID>:

Fwiw, this is happening in an outbound connection originated by a springboot 
app hosted in Tomcat. Any known issues with this and handshake issues?



What is happening? I have re-read the thread several times and can't 
find a description of what isn't working.






Then the tomcat sslHostConfig does not matter at all, only the one on the java options 
(or security config) "jdk.tls.client.cipherSuites".



That is likely the one to allok at although be aware limiting the TLS 
protocol versions will also limit the available cipher suites.


Mark





Peter




Thanks,


Sent with BlackBerry Work (www.blackberry.com)
________________________________
From: jonmcalexan...@wellsfargo.com.INVALID
Sent: Mar 4, 2023 3:08 AM
To: users@tomcat.apache.org
Subject: RE: sslHostConfig and ciphers

Thank you!!!


Thanks,


Sent with BlackBerry Work 
(https://urldefense.com/v3/__http://www.blackberry.com__;!!F9svGWnIaVPGSwU!sOH_wTKBGJ6Btc-RekE10jWwQ85jkQkEltIWa0AaoIbooX5UMGSH88GoLuiVcjYRxEg9wZBM3INUA8zBXKbc56z70yYUpimTy-zbVbi6bbQ$
 )
________________________________
From: "Thomas Hoffmann (Speed4Trade GmbH)" 
<thomas.hoffm...@speed4trade.com.INVALID>
Sent: Mar 4, 2023 1:22 AM
To: Tomcat Users List <users@tomcat.apache.org>
Subject: AW: sslHostConfig and ciphers

Hello,

this message originates from your used java. It's not from tomcat.
Java doesn't know this cipher-suite or is disabled in java.security

You can list the supported ciphers via some code lines like 
https://urldefense.com/v3/__https://stackoverflow.com/questions/9333504/how-can-i-list-the-available-cipher-algorithms__;!!F9svGWnIaVPGSwU!ok1eVR9QoczE-D4sspGE5zZh3h7aTnNIrKfVfkKUC4CSWI-99BHQNKZNO1VwWMhDzKjxpRQIsilgijmwV8_swl6-GicjRiAnIId8fctCkh9Xjg$

Greetings, Thomas


-----Ursprüngliche Nachricht-----
Von: jonmcalexan...@wellsfargo.com.INVALID
<jonmcalexan...@wellsfargo.com.INVALID>
Gesendet: Freitag, 3. März 2023 18:38
An: users@tomcat.apache.org
Betreff: sslHostConfig and ciphers

Ok, I don't know if I'm doing something wrong, or if I'm just not reading the
output correctly.

I have JSSE connector using sslHostConfig and in there I have defined ciphers,
as below:

<Connector port="8453"
protocol="org.apache.coyote.http11.Http11NioProtocol"
maxThreads="150"
maxHttpHeaderSize="16384"
compression="on"
scheme="https"
SSLEnabled="true"
secure="true"
defaultSSLHostConfigName="test.test">
<SSLHostConfig
hostName="test.test"
protocols="TLSv1.2"
ciphers="TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,TLS_ECDHE_RSA_WITH
_AES_256_GCM_SHA384,TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
TLS_DHE_DSS_WITH_AES_256_GCM_SHA384,TLS_DHE_RSA_WITH_AES_256_C
CM,TLS_ECDHE_ECDSA_WITH_AES_256_CCM,TLS_DHE_RSA_WITH_AES_256_
CCM_8,
TLS_ECDHE_ECDSA_WITH_AES_256_CCM_8,TLS_DHE_RSA_WITH_AES_128_G
CM_SHA256,TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,TLS_DHE_DSS_WITH_AES_1
28_GCM_SHA256,TLS_DHE_RSA_WITH_AES_128_CCM,
TLS_ECDHE_ECDSA_WITH_AES_128_CCM,TLS_DHE_RSA_WITH_AES_128_CCM
_8,TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8,
TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256,TLS_ECDHE_RSA_WITH_
CHACHA20_POLY1305_SHA256,
TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256"
<Certificate
certificateKeystoreFile="<path to certificate keystore (JKS)>"
certificateKeystorePassword ="${keystore.pass}"
certificateKeyPassword="${keystore.pass}"
certificateKeyAlias="<ALIAS>"
/>
</SSLHostConfig>
</Connector>

However, if I enable ssl debugging, I am getting the following messages in my
catalina.out file.

03-Mar-2023 16:43:22.120 INFO [main] org.apache.coyote.AbstractProtocol.init
Initializing ProtocolHandler ["https-jsse-nio-9443"]
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.146
UTC|SSLContextImpl.java:425|System property jdk.tls.client.cipherSuites is set
to 'null'
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.150
UTC|SSLContextImpl.java:425|System property jdk.tls.server.cipherSuites is set
to 'null'
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.161
UTC|SSLCipher.java:438|jdk.tls.keyLimits:  entry = AES/GCM/NoPadding
KeyUpdate 2^37. AES/GCM/NOPADDING:KEYUPDATE = 137438953472
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.201
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.201
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.202
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.202
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.202
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.202
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.203
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.212
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.212
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.213
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.213
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.213
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.213
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.214
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.221
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_DH_anon_WITH_AES_256_GCM_SHA384
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.221
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_DH_anon_WITH_AES_256_GCM_SHA384
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.221
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_DH_anon_WITH_AES_128_GCM_SHA256
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.222
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_DH_anon_WITH_AES_128_GCM_SHA256
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.222
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_DH_anon_WITH_AES_256_CBC_SHA256
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.222
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_DH_anon_WITH_AES_256_CBC_SHA256
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.222
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_anon_WITH_AES_256_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.223
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_anon_WITH_AES_256_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.223
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_DH_anon_WITH_AES_256_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.223
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_DH_anon_WITH_AES_256_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.223
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_DH_anon_WITH_AES_128_CBC_SHA256
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.224
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_DH_anon_WITH_AES_128_CBC_SHA256
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.224
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_anon_WITH_AES_128_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.224
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_anon_WITH_AES_128_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.224
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_DH_anon_WITH_AES_128_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.225
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_DH_anon_WITH_AES_128_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.228
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.228
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.229
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DH_anon_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.229
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DH_anon_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.229
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.229
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_ECDSA_WITH_RC4_128_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.230
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_RSA_WITH_RC4_128_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.230
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_RSA_WITH_RC4_128_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.230
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_WITH_RC4_128_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.230
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_WITH_RC4_128_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.230
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_ECDSA_WITH_RC4_128_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.231
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_ECDSA_WITH_RC4_128_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.231
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_RSA_WITH_RC4_128_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.231
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_RSA_WITH_RC4_128_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.231
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_WITH_RC4_128_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.231
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_WITH_RC4_128_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.232
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_anon_WITH_RC4_128_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.237
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_anon_WITH_RC4_128_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.237
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DH_anon_WITH_RC4_128_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.238
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DH_anon_WITH_RC4_128_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.238
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_WITH_DES_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.238
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_WITH_DES_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.238
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_RSA_WITH_DES_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.238
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_RSA_WITH_DES_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.239
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_DSS_WITH_DES_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.239
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_DSS_WITH_DES_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.239
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DH_anon_WITH_DES_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.239
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DH_anon_WITH_DES_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.239
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_EXPORT_WITH_DES40_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.240
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_EXPORT_WITH_DES40_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.240
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.240
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.240
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.241
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.241
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.241
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.241
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_EXPORT_WITH_RC4_40_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.241
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_EXPORT_WITH_RC4_40_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.242
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DH_anon_EXPORT_WITH_RC4_40_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.257
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DH_anon_EXPORT_WITH_RC4_40_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.258
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_RSA_WITH_NULL_SHA256
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.258
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_RSA_WITH_NULL_SHA256
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.258
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_ECDSA_WITH_NULL_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.258
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_ECDSA_WITH_NULL_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.258
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_RSA_WITH_NULL_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.259
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_RSA_WITH_NULL_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.259
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_WITH_NULL_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.259
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_WITH_NULL_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.259
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_ECDSA_WITH_NULL_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.259
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_ECDSA_WITH_NULL_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.260
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_RSA_WITH_NULL_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.260
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_RSA_WITH_NULL_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.260
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_anon_WITH_NULL_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.260
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_anon_WITH_NULL_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.260
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_WITH_NULL_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.261
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_WITH_NULL_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.262
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.270
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.270
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_WITH_3DES_EDE_CBC_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.270
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_WITH_3DES_EDE_CBC_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.270
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_WITH_RC4_128_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.270
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_WITH_RC4_128_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.271
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_WITH_RC4_128_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.271
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_WITH_RC4_128_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.271
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_WITH_DES_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.271
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_WITH_DES_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.271
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_WITH_DES_CBC_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.272
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_WITH_DES_CBC_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.272
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_EXPORT_WITH_DES_CBC_40_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.272
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_EXPORT_WITH_DES_CBC_40_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.272
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_EXPORT_WITH_DES_CBC_40_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.272
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_EXPORT_WITH_DES_CBC_40_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.273
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_EXPORT_WITH_RC4_40_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.273
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_EXPORT_WITH_RC4_40_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.273
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_KRB5_EXPORT_WITH_RC4_40_MD5
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.287
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_KRB5_EXPORT_WITH_RC4_40_MD5
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.291
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.292
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.292
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.292
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.292
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.292
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.292
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.293
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.293
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.293
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.293
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.293
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.294
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.294
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.294
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_AES_256_GCM_SHA384
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.294
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_AES_128_GCM_SHA256
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.295
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.300
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.300
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.301
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.301
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.301
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.301
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.301
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.301
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.302
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.302
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.302
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.302
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.302
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.303
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.303
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.303
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.303
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.303
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.304
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.304
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.304
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.304
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.304
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.304
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.305
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|FINE|01|main|2023-03-03 16:43:22.305
UTC|SSLContextImpl.java:399|Ignore disabled cipher suite:
SSL_RSA_WITH_3DES_EDE_CBC_SHA
javax.net.ssl|ALL|01|main|2023-03-03 16:43:22.305
UTC|SSLContextImpl.java:408|Ignore unsupported cipher suite:
SSL_RSA_WITH_3DES_EDE_CBC_SHA

Have I configured something incorrectly?

Thank you,

Dream * Excel * Explore * Inspire
Jon McAlexander
Senior Infrastructure Engineer
Asst. Vice President
He/His

Middleware Product Engineering
Enterprise CIO | EAS | Middleware | Infrastructure Solutions

8080 Cobblestone Rd | Urbandale, IA 50322
MAC: F4469-010
Tel 515-988-2508 | Cell 515-988-2508

jonmcalexan...@wellsfargo.com<mailto:jonmcalexan...@wellsfargo.com>
This message may contain confidential and/or privileged information. If you
are not the addressee or authorized to receive this for the addressee, you must
not use, copy, disclose, or take any action based on this message or any
information herein. If you have received this message in error, please advise
the sender immediately by reply e-mail and delete this message. Thank you for
your cooperation.



---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org




---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org



---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org























					Reply via email to