Re: Issue while configuring keystore/SSL for Tomcat 8.5.33

2018-10-18 Thread manjesh
can you share the full debug log ? what is the client for this SSL service ? browser or some other standalone programs what version of JDK is being used? On Thu, Oct 18, 2018 at 2:20 PM Sashidharan Ramamurthy < sashidharan.ramamur...@ericsson.com> wrote: > Any updates users of tomcat on this

Re: How to implement Security Headers in Tomcat 6

2017-05-29 Thread manjesh
If the technology is java/j2ee then you can implements some sort of servlet filter where you can manipulate the HTTP response to add these headers for each outgoing response. I believe other platforms like .Net should also support similar feature to customize the request and response objects.

Re: tomcat does not choose the higher curve when EC ciphers are configured

2016-12-20 Thread manjesh
thanks. I believe as a part of cipher negotiation the server (tomcat) should do this rather than the provider (JDK/SunJC) On Tue, Dec 20, 2016 at 8:49 PM, Christopher Schultz < ch...@christopherschultz.net> wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > manjesh,

tomcat does not choose the higher curve when EC ciphers are configured

2016-12-20 Thread manjesh
Below shown snippet is the ciphersuite configuration. Tomcat version 8.026 and JDK 1.8 Tested with Nmap Check the server for the supported cipher suites. nmap -p 443 --script ssl-enum-ciphers.nse hostname The result shows server supports few ciphers with curves secp160k1,secp192k1,

how to test hash collision security fix in tomcat 7.1

2012-05-30 Thread manjesh
must be thrown according to the fix done in Parameters class of (tomcat-coyote.jar) am I doing test correctly..? please help me Note: I have also tried adding parameter to JAVA_OPTS in run.bat -- Regards Manjesh

Re: how to test hash collision security fix in tomcat 7.1

2012-05-30 Thread manjesh
); paramHashValues.put(key, values); } values.add(value); } now what happens when number of request parameters exceeds maxParameterCount ? -Manjesh On Thu, May 31, 2012 at 2:39 AM, Konstantin Kolinko knst.koli...@gmail.com wrote: 2012/5/30 manjesh manjes...@gmail.com: Hi , I