Could you please help me to find out which cipher suits are being used when TLSv1 protocol is being used with Https.
<subsystem xmlns="urn:jboss:domain:web:1.1" default-virtual-server="default-host" native="false">
<connector name="http" protocol="HTTP/1.1" scheme="http" socket-binding="http"/>
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true">
<ssl password="******" certificate-key-file="/Jboss 7/certs/jboss.jks" protocol="TLSv1" verify-client="false" certificate-file="/Jboss 7/certs/jboss.jks"/>
<virtual-server name="default-host" enable-welcome-root="true">
Also if we want to specify few cipher suits to be used for this Https connector, how can i specify it?
The above configuration gives as error on firefox that "no common encryption alogorithm found SSL error, (Error code: ssl_error_no_cypher_overlap)"
By updating the firefox to latest version, it works, so need to figure out which cipher suits are used by default with JBoss AS 7.1.1 final release.
AS7 does not have any special cypher handling specifed, as you are using non-native(java) impl of ssl all ssl/encryption is handled by JVM, that means that the question is what the jvm you are using supports, also usualy you can install strong encription extensions for jvm.
In short, it is what your jvm supports, research more on that area.
The ssl element for a connector in the web subsystem has a cipher-suite attribute that allows you to define a comma separated list of cipher suites to allow.
I believe the default ones used would be the ones provided by the JVM.
|Retrieving data ...|