禁用Tomcat 5.5.27的弱密码? [英] Disabling weak Ciphers for Tomcat 5.5.27?
问题描述
请让我知道如何禁用Tomcat 5.5.27的弱密码
Please let me know how can I disable weak Ciphers for Tomcat 5.5.27
推荐答案
请参阅密码
属性在HTTP连接器定义中: http://tomcat.apache.org/tomcat-5.5-doc/config/http.html
See the ciphers
attribute in the HTTP connector definition: http://tomcat.apache.org/tomcat-5.5-doc/config/http.html
或者如果您使用APR,请参阅 SSLCipherSuite
指令,如SSL连接器配置中所述,如下所述: http://tomcat.apache.org/tomcat-5.5-doc/apr.html 。
Alternatively if you're using APR, see the SSLCipherSuite
directive as documented in the SSL connector configuration as documented here: http://tomcat.apache.org/tomcat-5.5-doc/apr.html.
请注意,OpenSSL密码子名称与j2se密码名称不完全相同。 Java密码记录在: http ://java.sun.com/j2se/1.4.2/docs/guide/security/jsse/JSSERefGuide.html#SunJSSE 的。对于APR,命令 openssl ciphers
将为您提供系统上所有可用OpenSSL密码的列表。
Note that OpenSSL ciphersuite names aren't quite the same as the j2se ciphersuite names. The Java ciphers are documented at: http://java.sun.com/j2se/1.4.2/docs/guide/security/jsse/JSSERefGuide.html#SunJSSE. For APR, the command openssl ciphers
will give you a list of all available OpenSSL ciphers on your system.
这篇关于禁用Tomcat 5.5.27的弱密码?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!