Thanks Chris,
My debugging procedure started with listing all the ciphers in tomcat
explicitly, then I tried winnowing down the list until it worked. I
did use an extension in FF that let me disable certain ciphers
completely. It's possible that the preference order is different and
your browser
Mark,
On 11/24/15 1:56 PM, Mark Robinson wrote:
> My config is pretty vanilla.
>
> protocol="org.apache.coyote.http11.Http11NioProtocol"
> port="8443" maxThreads="200"
> ciphers="TLS_RSA_WITH_AES_128_GCM_SHA256,TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256,TLS_DHE_RSA_WITH_AES
My config is pretty vanilla.
This fails, because of the three problematic ciphers.
As far as I know I'm not using any system properties to control JSSE.
On Tue, Nov 24, 2015 at 10:16 AM, Christopher Schultz
wrote:
> Mark,
>
> On 11/24/15 12:36 PM, Mark Robinson wrote:
>> I'm having this
Mark,
On 11/24/15 12:36 PM, Mark Robinson wrote:
> I'm having this problem with TLS in Firefox and Chrome. Some of my
> requests are failing with an SSL MAC Bad Read error. I'm using Tomcat
> 8.0.24 on Java 8.0_u66 / Ubuntu 14.04. So it works fine with IE, and
> if I disable some ciphers then i
I'm having this problem with TLS in Firefox and Chrome. Some of my
requests are failing with an SSL MAC Bad Read error. I'm using Tomcat
8.0.24 on Java 8.0_u66 / Ubuntu 14.04. So it works fine with IE, and
if I disable some ciphers then it works.
If I disable these ciphers TLS_RSA_WITH_AES_128_