Hi,
Send the messaged first and then someone pointed out
that by changing the subject line I was hijacking the
message.. sorry for the mistake.. sending the question
again:
I have following weak ciphers as per Foundstone
SSLDIgger in my tomcat(5.5) implemenation:
EXP-DES-CBC-SHA
EXP-RC4-MD5
DES-CBC-SHA
and few strong ones
RC4-MD5
RC4-SHA
DES-CBC3-SHA
now I want to remove support for weak ones. So in
server.xml I go and for connector port 8443 for my SSL
I put property Ciphers="DES-CBC3-SHA,RC4-SHA,RC4-MD5".
After restart when I run the foundstone SSLDigger on
it it again says that I support all the weak ones in
addition to strong ones. Any idea what I am doing
wrong here.
thanks,
Jignesh
____________________________________________________________________________________
Fussy? Opinionated? Impossible to please? Perfect. Join Yahoo!'s user panel
and lay it on us. http://surveylink.yahoo.com/gmrs/yahoo_panel_invite.asp?a=7
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
