https://issues.apache.org/bugzilla/show_bug.cgi?id=53952
--- Comment #33 from jeffrey.jan...@polydyne.com --- I was looking at the code for the patch in Comment #32 and noticed that you introduced a regression. SSLv2 was removed from the ALL list sometime back so that the default was to not support SSLv2. This is also how it is documented on the Tomcat website. Please remove SSLv2 from the list of ALL protocols. Might I suggest that our new default for ALL also not include SSLv3, since it is now basically a useless protocol? -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
