How can I best prevent the use of allegedly weak ciphers with my SSL-enabled Tomcat 5.5.9 setup? E.g.
NULL-SHA (no encryption or key exchange) EXP-DES-CBC-SHA (40 bit encryption) DES-CBC-SHA (56 bit) etc. All I can find is the Connector attribute ciphers = <comma separated list of allowed ciphers> but I only know the ciphers I *don't* want, not the ones I do... Paul Singleton -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.338 / Virus Database: 267.10.0/63 - Release Date: 3/Aug/2005 --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]