Details
-
Enhancement
-
Resolution: Fixed
-
P3
-
6
-
b96
-
x86
-
linux
Description
Certicom SSL supports the possibilty to disable client initiated renegotiation
JSSE does not support this functionality.
WLS used to use Certicom-SSL. Now JSSE.
Hence there is s a loss of functionality.
Seems as if the needed work is already mostly done by one guy named Neale Rudd (http://wiki.metawerx.net/wiki/NealeRudd)
He is talking about a patch for openjdk that delivers exactly this feature in JSSE.
This is the mailinglist thread:
http://mail.openjdk.java.net/pipermail/security-dev/2012-March/004645.html
===============
JSSE does not support this functionality.
WLS used to use Certicom-SSL. Now JSSE.
Hence there is s a loss of functionality.
Seems as if the needed work is already mostly done by one guy named Neale Rudd (http://wiki.metawerx.net/wiki/NealeRudd)
He is talking about a patch for openjdk that delivers exactly this feature in JSSE.
This is the mailinglist thread:
http://mail.openjdk.java.net/pipermail/security-dev/2012-March/004645.html
===============
Attachments
Issue Links
- relates to
-
JDK-8019346 Reconsider the namespace for JDK-7188658
- Resolved
-
JDK-8017049 rename property jdk.tls.rejectClientInitializedRenego
- Closed
-
JDK-8019359 To comment why not use no_renegotiation to reject client initiated renegotiation
- Closed