Uploaded image for project: 'Jira Platform Cloud'
  1. Jira Platform Cloud
  2. JRACLOUD-42347

Update embedded Tomcat to 7.0.58+

XMLWordPrintable

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      NOTE: This suggestion is for JIRA Cloud. Using JIRA Server? See the corresponding suggestion.

      See http://tomcat.apache.org/tomcat-7.0-doc/changelog.html for details
      Notably related to OFBIZ-5848 (Poodle) changes in Coyot

      1. support for TLSv1.1 and TLSv1.2 for APR connector. Based upon a patch by Marcel Šebek. This feature requires Tomcat Native library 1.1.32 or later.
      2. Disable SSLv3 by default for JSSE based HTTPS connectors (BIO and NIO). The change also ensures that SSLv2 is disabled for these connectors although SSLv2 should already be disabled by default by the JRE.
      3. Disable SSLv3 by default for the APR/native HTTPS connector.

              Unassigned Unassigned
              0db588d5c835 Ruby Paasche
              Votes:
              6 Vote for this issue
              Watchers:
              11 Start watching this issue

                Created:
                Updated:
                Resolved: