-
Suggestion
-
Resolution: Duplicate
-
None
-
None
NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion.
See http://tomcat.apache.org/tomcat-7.0-doc/changelog.html for details
Notably related to OFBIZ-5848 (Poodle) changes in Coyot
- support for TLSv1.1 and TLSv1.2 for APR connector. Based upon a patch by Marcel Šebek. This feature requires Tomcat Native library 1.1.32 or later.
- Disable SSLv3 by default for JSSE based HTTPS connectors (BIO and NIO). The change also ensures that SSLv2 is disabled for these connectors although SSLv2 should already be disabled by default by the JRE.
- Disable SSLv3 by default for the APR/native HTTPS connector.
- is related to
-
CONFSERVER-35386 SSLv3 Is Not Disabled When sslProtocol is Set to TLS, Vulnerable to POODLE
- Closed
-
JRASERVER-42347 Update embedded Tomcat to 7.0.58+
- Closed
- relates to
-
CONFCLOUD-36800 Update embedded Tomcat to 7.0.57+
- Closed