Hi Colm,
I saw that you added a line of code on Wednesday to disable the SSLv2Hello
protocol in the Jetty server
([cxf.git]<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
rt<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
transports<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
http-jetty<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports/http-jetty;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
src<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports/http-jetty/src;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
main<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports/http-jetty/src/main;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
java<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports/http-jetty/src/main/java;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
org<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports/http-jetty/src/main/java/org;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
apache<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports/http-jetty/src/main/java/org/apache;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
cxf<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports/http-jetty/src/main/java/org/apache/cxf;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
transport<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports/http-jetty/src/main/java/org/apache/cxf/transport;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
http_jetty<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=tree;f=rt/transports/http-jetty/src/main/java/org/apache/cxf/transport/http_jetty;hb=0d5904d06f9a349f405a318647cf1daa53c46194>
/
JettyHTTPServerEngine.java<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=blob_plain;f=rt/transports/http-jetty/src/main/java/org/apache/cxf/transport/http_jetty/JettyHTTPServerEngine.java;hb=0d5904d06f9a349f405a318647cf1daa53c46194>)
by default unless the protocol is set in the TLSServerParameters
678 if (!"SSLv2Hello".equals(proto)) {
679<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=blob;f=rt/transports/http-jetty/src/main/java/org/apache/cxf/transport/http_jetty/JettyHTTPServerEngine.java;h=0d5904d06f9a349f405a318647cf1daa53c46194;hb=0d5904d06f9a349f405a318647cf1daa53c46194#l679>
scf.addExcludeProtocols("SSLv2Hello");
680<https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=blob;f=rt/transports/http-jetty/src/main/java/org/apache/cxf/transport/http_jetty/JettyHTTPServerEngine.java;h=0d5904d06f9a349f405a318647cf1daa53c46194;hb=0d5904d06f9a349f405a318647cf1daa53c46194#l680>
}
I would like to disable this protocol in my current project. Is there a way
to get hold of the SSLContext in my implementation (from the client call or in
a client interceptor?)
Thanks very much.
David Roytenberg
AVIS IMPORTANT
WARNING
Ce message ?lectronique et ses pi?ces jointes peuvent contenir des
renseignements confidentiels, exclusifs ou l?galement privil?gi?s destin?s au
seul usage du destinataire vis?. L'exp?diteur original ne renonce ? aucun
privil?ge ou ? aucun autre droit si le pr?sent message a ?t? transmis
involontairement ou s'il est retransmis sans son autorisation. Si vous n'?tes
pas le destinataire vis? du pr?sent message ou si vous l'avez re?u par erreur,
veuillez cesser imm?diatement de le lire et le supprimer, ainsi que toutes ses
pi?ces jointes, de votre syst?me. La lecture, la distribution, la copie ou tout
autre usage du pr?sent message ou de ses pi?ces jointes par des personnes
autres que le destinataire vis? ne sont pas autoris?s et pourraient ?tre
ill?gaux. Si vous avez re?u ce courrier ?lectronique par erreur, veuillez en
aviser l'exp?diteur.
This electronic message and its attachments may contain confidential,
proprietary or legally privileged information, which is solely for the use of
the intended recipient. No privilege or other rights are waived by any
unintended transmission or unauthorized retransmission of this message. If you
are not the intended recipient of this message, or if you have received it in
error, you should immediately stop reading this message and delete it and all
attachments from your system. The reading, distribution, copying or other use
of this message or its attachments by unintended recipients is unauthorized and
may be unlawful. If you have received this e-mail in error, please notify the
sender.
--
WARNING
-------
This electronic message and its attachments may contain confidential,
proprietary or legally privileged information, which is solely for the use of
the intended recipient. No privilege or other rights are waived by any
unintended transmission or unauthorized retransmission of this message. If you
are not the intended recipient of this message, or if you have received it in
error, you should immediately stop reading this message and delete it and all
attachments from your system. The reading, distribution, copying or other use
of this message or its attachments by unintended recipients is unauthorized and
may be unlawful. If you have received this e-mail in error, please notify the
sender.
AVIS IMPORTANT
--------------
Ce message electronique et ses pieces jointes peuvent contenir des
renseignements confidentiels, exclusifs ou legalement privilegies destines au
seul usage du destinataire vise. L'expediteur original ne renonce a aucun
privilege ou a aucun autre droit si le present message a ete transmis
involontairement ou s'il est retransmis sans son autorisation. Si vous n'etes
pas le destinataire vise du present message ou si vous l'avez recu par erreur,
veuillez cesser immediatement de le lire et le supprimer, ainsi que toutes ses
pieces jointes, de votre systeme. La lecture, la distribution, la copie ou
tout autre usage du present message ou de ses pieces jointes par des personnes
autres que le destinataire vise ne sont pas autorises et pourraient etre
illegaux. Si vous avez recu ce courrier electronique par erreur, veuillez en
aviser l'expediteur.
