Tomcat有如下配置文件影响tls
server.xml(配置中在sslenabled表示启用):
sslEnabledProtocols="SSLv2Hello,TLSv1,TLSv1.1,TLSv1.2"
java.security(配置中在disabled里的表示禁用):
jdk.tls.disabledAlgorithms=SSLv3, TLSv1, TLSv1.1, RC4, DES, MD5withRSA, \
DH keySize < 1024, EC keySize < 224, 3DES_EDE_CBC, anon, NULL, \
include jdk.disabled.namedCurves
java.security优先级大于server.xml
COMMENTS | NOTHING