[jboss-jira] [JBoss JIRA] (WFLY-4351) Support for server cipher suite preference
ehsavoie Hugonnet (JIRA)
issues at jboss.org
Mon Feb 15 04:23:00 EST 2016
[ https://issues.jboss.org/browse/WFLY-4351?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13162789#comment-13162789 ]
ehsavoie Hugonnet commented on WFLY-4351:
-----------------------------------------
You can define which cipher suites to use in your https-listener using the "enabled-cipher-suites" attribute.
> Support for server cipher suite preference
> ------------------------------------------
>
> Key: WFLY-4351
> URL: https://issues.jboss.org/browse/WFLY-4351
> Project: WildFly
> Issue Type: Enhancement
> Components: Web (Undertow)
> Reporter: Nico Schlebusch
> Assignee: Darran Lofthouse
>
> Please expose config option in subsystem config to enable server cipher suite preference. The relevant API call is SSLParameters.setUseCipherSuitesOrder(boolean) in Java 8.
> We are busy looking at the security of our web services exposed by Wildfly 8.2.0.Final when we came across these posts:
> http://blog.ivanristic.com/2014/03/ssl-tls-improvements-in-java-8.html
> http://docs.oracle.com/javase/8/docs/technotes/guides/security/jsse/JSSERefGuide.html#cipher_suite_preference
> App Server: WildFly 8.2.0.Final
> Java: Java 8 Update 31
> OS: Linux / gentoo
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list