RE: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-16 Thread Jason Jesso
z.net] Sent: Thursday, April 16, 2015 8:45 AM To: Tomcat Users List Subject: Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Jason, On 4/16/15 7:48 AM, Jason Jesso wrote: > My goal was to disable the EXPORT ciphers and not be able to > c

RE: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-16 Thread Jason Jesso
...@christopherschultz.net] Sent: Thursday, April 16, 2015 8:45 AM To: Tomcat Users List Subject: Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Jason, On 4/16/15 7:48 AM, Jason Jesso wrote: > My goal was to disable the EXPORT ciphers

Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-16 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Jason, On 4/16/15 7:48 AM, Jason Jesso wrote: > My goal was to disable the EXPORT ciphers and not be able to > connect with: > > openssl s_client -cipher EXPORT -connect localhost:443 < /dev/null > 2>/dev/null I think your goal was pretty clear.

RE: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-16 Thread Jason Jesso
d for us. Thanks for your help! From: Christopher Schultz [ch...@christopherschultz.net] Sent: Thursday, April 16, 2015 1:01 AM To: Tomcat Users List Subject: Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK) -BEGIN PGP SIGNED MESSAGE- Hash:

Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-15 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Jason, On 4/15/15 12:05 PM, Jason Jesso wrote: > I have Tomcat 6.0.41 connector set-up with: > > SSLProtocol="TLSv1.1,TLSv1.2" > ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, > TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, > TLS_ECDHE_RSA_WITH_AES_256_C

Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-15 Thread David kerber
5 12:26 PM To: Tomcat Users List Subject: Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK) On 4/15/2015 12:05 PM, Jason Jesso wrote: I have Tomcat 6.0.41 connector set-up with: SSLProtocol="TLSv1.1,TLSv1.2" ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC

RE: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-15 Thread Jason Jesso
rom: David kerber [dcker...@verizon.net] Sent: Wednesday, April 15, 2015 1:34 PM To: Tomcat Users List Subject: Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK) On 4/15/2015 1:17 PM, Jason Jesso wrote: > I am using Java 1.6 on AIX plaform. > > /usr/java6/bin/java -version > java ver

Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-15 Thread David kerber
To: Tomcat Users List Subject: Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK) On 4/15/2015 12:05 PM, Jason Jesso wrote: I have Tomcat 6.0.41 connector set-up with: SSLProtocol="TLSv1.1,TLSv1.2" ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,

RE: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-15 Thread Jason Jesso
I also have Java 7 on the same host and got the same result. From: Jason Jesso [jje...@global-matrix.com] Sent: Wednesday, April 15, 2015 1:17 PM To: Tomcat Users List Subject: RE: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK) I am using Java 1.6

RE: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-15 Thread Jason Jesso
TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK) On 4/15/2015 12:05 PM, Jason Jesso wrote: > I have Tomcat 6.0.41 connector set-up with: > > > SSLProtocol="TLSv1.1,TLSv1.2" > ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, >

Re: TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-15 Thread David kerber
On 4/15/2015 12:05 PM, Jason Jesso wrote: I have Tomcat 6.0.41 connector set-up with: SSLProtocol="TLSv1.1,TLSv1.2" ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256

TLS Server Accepts RSA_EXPORT Cipher Suites (FREAK)

2015-04-15 Thread Jason Jesso
I have Tomcat 6.0.41 connector set-up with: SSLProtocol="TLSv1.1,TLSv1.2" ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_RSA_WITH_AES_128_CBC_SHA