我正在建立SSL连接(作为客户端),根据这篇Oracle文章,如果您使用TLSv1.2并启用强制版本的管辖区策略,则JDK7中将支持以下两种cypher诉讼.
但是,在进行安全连接时会忽略两个密码算法.
Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
**Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384**
Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384
Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_256_CBC_SHA256
**Ignoring unsupported cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256**
Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
Ignoring unsupported cipher suite: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384
Ignoring unsupported cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256
Ignoring unsupported cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256
Allow unsafe renegotiation: false …Run Code Online (Sandbox Code Playgroud) 我编写了在glassfish服务器上运行的soap客户端应用程序。
出于肥皂安全的原因,我必须更新Metro项目的类(SecurityHeather.java)部分,该部分通过webservices-osgi.jar glassfish的模块提供。
无论如何,有没有要重写glassfish \ modules \ webservices-osgi.jar内部的类?
最简单的方法是更新jar文件中的类并保存。但我不确定是否是最好的方法。