[EMAIL PROTECTED] wrote:
Hello,
I'm having some trouble configuring secure connections. I have 2 webapps that I
deployed myself. One in /dspace and another one in /odin. I have set the
transport-guarantuee for both to INTEGRAL. I did this in their own
web.xml-files. In both cases I used / as url-pattern.
I have set the transport-guarantuee for /manager to CONFIDENTIAL.
I have set ciphers to (shortened) NULL_SHA and two others with encryption and
authentication.
When I browse the /dspace- and /odin-pages I het authentication and encryption,
while I only would like to have authentication.
Can anyone tell me/help me why I also get encryption in these cases?
As far as I recall, the JSSE implementation has an order of preference
for the ciphers and NULL_SHA is very likely to be below the others.
Mark
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
