OK. apt-get updates my JVM to the latest version, so I'm covered
there. I will make sure to upgrade Jetty ASAP, then I will report
back.
Any thoughts about the broken certificate chain? Web browsers
seem to be fine with my current setup. It's SSL Labs that is
complaining.
Thanks
On 4/21/2016 12:47 PM, Joakim Erdfelt
wrote:
Instead of replacing the exclusion list, perhaps
you should just add to the exclusion list.
<Call name="addExcludeCipherSuites">
<Arg>
<Array type="String">
<Item>.*_DHE_.*$</Item>
</Array>
</Arg>
</Call>
Also, when it comes to SSL/TLS, you need to keep
your Jetty and Java installations up to date.
Jetty 9.3.8 is out, and it adds more cipher exclusions to
satisfy other SSL/TLS concerns (re: Chrome, SLOTH)
_______________________________________________
jetty-users mailing list
jetty-users@xxxxxxxxxxx
To change your delivery options, retrieve your password, or unsubscribe from this list, visit
https://dev.eclipse.org/mailman/listinfo/jetty-users
--
Lobos Studios | Phone: 877.919.4WEB | LobosStudios.com | Facebook.com/LobosStudios | @LobosStudios
Web Development - Mobile Development - Helpdesk/Tech Support - Computer Sales & Service
Acer Authorized Reseller - Computers, Windows and Android Tablets, Accessories
Steve Sobol - CEO, Senior Developer and Server Jockey
steve@xxxxxxxxxxxxxxxx