禁用Tomcat 5.5.27的弱密码？ [英] Disabling weak Ciphers for Tomcat 5.5.27?

问题描述

请让我知道如何禁用Tomcat 5.5.27的弱密码

Please let me know how can I disable weak Ciphers for Tomcat 5.5.27

推荐答案

请参阅密码属性在HTTP连接器定义中： http://tomcat.apache.org/tomcat-5.5-doc/config/http.html

See the ciphers attribute in the HTTP connector definition: http://tomcat.apache.org/tomcat-5.5-doc/config/http.html

或者如果您使用APR，请参阅 SSLCipherSuite 指令，如SSL连接器配置中所述，如下所述： http://tomcat.apache.org/tomcat-5.5-doc/apr.html 。

Alternatively if you're using APR, see the SSLCipherSuite directive as documented in the SSL connector configuration as documented here: http://tomcat.apache.org/tomcat-5.5-doc/apr.html.

请注意，OpenSSL密码子名称与j2se密码名称不完全相同。 Java密码记录在： http ：//java.sun.com/j2se/1.4.2/docs/guide/security/jsse/JSSERefGuide.html#SunJSSE 的。对于APR，命令 openssl ciphers 将为您提供系统上所有可用OpenSSL密码的列表。

Note that OpenSSL ciphersuite names aren't quite the same as the j2se ciphersuite names. The Java ciphers are documented at: http://java.sun.com/j2se/1.4.2/docs/guide/security/jsse/JSSERefGuide.html#SunJSSE. For APR, the command openssl ciphers will give you a list of all available OpenSSL ciphers on your system.

这篇关于禁用Tomcat 5.5.27的弱密码？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！