[
https://issues.apache.org/jira/browse/FLUME-2547?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14251015#comment-14251015
]
li xiang commented on FLUME-2547:
---------------------------------
Hi Hari, I read the JIRA originally for 1.5.1.
So 1.5.1 excludes SSLv3 and SSLv2Hello as the default, and 1.5.2 brings
SSLv2Hello back, right ?
The reason why bringing SSLv2Hello back, is many SSL clients, notably JDK 6,
use SSLv2Hello to handshake with the server ?
> Removing SSLv2Hello causes Java 6 clients to break
> --------------------------------------------------
>
> Key: FLUME-2547
> URL: https://issues.apache.org/jira/browse/FLUME-2547
> Project: Flume
> Issue Type: Bug
> Reporter: Hari Shreedharan
> Assignee: Hari Shreedharan
> Fix For: v1.6.0, v1.5.2
>
>
> In Java 6, if the server side does not accept SSLv3, SSLv2Hello is required
> even if TLS is used. SSLv2Hello itself is not insecure so we should bring it
> back for compat with older Java versions
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
