[
https://issues.apache.org/jira/browse/AMQ-5970?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14802804#comment-14802804
]
Christopher L. Shannon commented on AMQ-5970:
---------------------------------------------
Currently a simple check is done just to see if the bouncy castle jar is on the
classpath and if it is then it is loaded. If the jar were to get packaged we
might have to be smarter about how it gets loaded. For example, maybe add a
configuration option to enable/disable loading the bouncy castle provider
implementation. The default should probably be true for JDK7 and false for
JDK8 and above.
> Weak ethereal DH key bug
> ------------------------
>
> Key: AMQ-5970
> URL: https://issues.apache.org/jira/browse/AMQ-5970
> Project: ActiveMQ
> Issue Type: Bug
> Affects Versions: 5.12.0
> Environment: JDK 1.7.0_79
> Reporter: Laura Mann
> Labels: ssl, ssl3, sslContext, websocket
>
> All modern browser's throw " SSL received a weak ephemeral Diffie-Hellman key
> in Server Key Exchange handshake message. (Error code:
> ssl_error_weak_server_ephemeral_dh_key) " when attempting to connect to a
> secure websocket via activemq. This appears to be related to enabling and
> disabling the correct cipher suite (though no combination using the
> transport.enabledCipherSuites=… option seems to work).
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
