we had success with this when developing locally:
<property name="sslProtocol" value="TLSv1"/>
<property name="protocols" value="TLSv1"/>
the reason is that it is undoucmented to use protocols instead of
sslEnabledProtocols
see https://blogs.atlassian.com/2014/10/ssl-poodle/
http://tomcat.10.x6.nabble.com/How-to-allow-only-TLS-1-1-connections-to-Tomcat-6-0-server-with-https
we get this when trying to connect with ssl3 locally
openssl s_client -connect localhost:portnumberhere -ssl3
CONNECTED(00000003)
6990:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version
number:/SourceCache/OpenSSL098/OpenSSL098-47.2/src/ssl/s3_pkt.c:290:
--
View this message in context:
http://ofbiz.135035.n4.nabble.com/Re-Ofbiz-09-04-piddle-bleed-fix-tp4657772p4657829.html
Sent from the OFBiz - User mailing list archive at Nabble.com.
