RE: Tomcat v9 - Insecure transport vulnerability reported by Qualys

-Original Message- From: Mark Thomas [mailto:ma...@apache.org] Sent: Thursday, 27 August, 2020 00:42 To: users@tomcat.apache.org Subject: Re: Tomcat v9 - Insecure transport vulnerability reported by Qualys ... (from earlier in this thread) > On Wed, Aug 26, 2020 at 7:53 AM Pratik Shrestha

RE: Tomcat won't use TLSv1.2

> . wrote: >>On 2020-03-05 at 23:10 rugman66 wrote: > On Thu, Mar 5, 2020 at 10:44 AM i...@flyingfischer.ch > wrote: >> Try SSLProtocol="TLSv1.2" (mind the case) instead of sslProtocol="-all >> +TLSv1.2". >> >> Had this issue too. The connector parameters for SSL are a huge mess and >> have be

RE: Not sure what to make of this, Re: bringing up HTTPS on Tomcat

IBM's documentation on this web page: http://publib.boulder.ibm.com/infocenter/wsdoc400/v6r0/topic/com.ibm.websphere.iseries.doc/info/ae/ae/secmigjsse.htm provides instructions on how to export the certificates from DCM into Java keystores. As they mention below, they've moved away from using the