James, > Am 07.01.2021 um 00:34 schrieb James H. H. Lampert <jam...@touchtonecorp.com>: > > We just had our first Tomcat 8.5 installation on a customer's AS/400. > > The customer apparently has his own CA (they're a big company), and when I > installed SSL in their Tomcat, and tested it with a browser, it complained, > something to the general effect of "weak signature algorithm." > I guess they never upgraded their CA and still sign the certs with SHA1 or even MD5.
They should change that for sure! Peter > While it's not really my problem (and is only connected to Tomcat by virtue > of it happening with a Tomcat server), I'm curious about what's up with it, > if anybody here is able and willing to explain it. > > Of course, a customer that's big enough to run a private CA in production is > already doing things beyond my pay grade. > > -- > JHHL > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org