RE: Need help on ssl handshake logging for audit purpose
You may want to try the following "verbose" option -Djavax.net.debug=ssl:handshake:verbose -Original Message- From: Ragavendhiran Bhiman (rabhiman) Sent: Tuesday, June 8, 2021 7:48 AM To: users@tomcat.apache.org Subject: Need help on ssl handshake logging for audit purpose Hi All, In our product we are using jdk8 and tomcat apache latest version. I have enabled -Djavax.net.debug=ssl:handshake from jdk side. But I could see the handshake logging are coming as hex in the Catalina.out log messages. I want to know how to print the message in the proper English format. Is any other mistake I am doing? Kindly help me in this regard. Thanks & Regards, Raghav - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Need help on ssl handshake logging for audit purpose
Hi All, In our product we are using jdk8 and tomcat apache latest version. I have enabled -Djavax.net.debug=ssl:handshake from jdk side. But I could see the handshake logging are coming as hex in the Catalina.out log messages. I want to know how to print the message in the proper English format. Is any other mistake I am doing? Kindly help me in this regard. Thanks & Regards, Raghav
Re: Request: Encryption requirements for TLS and SSL for Tomcat
On 08.06.21 14:10, Emen-Eddine AISSAOUI wrote: > Hello, > > I am contacting you regarding the cipher suite recommandations for TLS and > SSL for Tomcat. > > Could you please tell us which cipher suites are used and necessary and if > there is any particular prequesites regarding TLS and SSL encryption for the > proper functioning of Tomcat ? > > This is an urgent request for a customer feedback. Are you asking for the Java prerequisites? Bitsize for keys requirement? What do you call "proper functioning" of Tomcat? Because it functions quite properly with any (supported) TLS settings. In general, the recommendations for ciphers are independent of the app server, it's rather a common industry standard (changing over time), but heavily depends on the devices you need to support. Can't go without this rant with regards to your urgency: If you have customers paying /you/ for that information, how much of that money are you willing to share for a quicker answer, /tailored/ to your (customer's) /exact/ needs? Olaf
Request: Encryption requirements for TLS and SSL for Tomcat
Hello, I am contacting you regarding the cipher suite recommandations for TLS and SSL for Tomcat. Could you please tell us which cipher suites are used and necessary and if there is any particular prequesites regarding TLS and SSL encryption for the proper functioning of Tomcat ? This is an urgent request for a customer feedback. Thank you in advance. Kind Regards, Emen-Eddine