On that note I thought I'd share the cipher suites we have been using:
kEECDH+ECDSA:kEECDH:kEDH:+SHA:-3DES:kRSA+3DES:!aNULL:!eNULL:!LOW:!MD5:!EXP:!DSS:!PSK:!SRP:!RC4:!SEED:!kECDH:!CAMELLIA
- avoids using RC4
- prefers forward secrecy for all browsers except those, which do not
support it
- no se
I am seeing NPEs after reloading a web application with a custom
. Just downloaded the sample.war, added the following
block in web.xml and thus reloaded the web application:
/404.jsp
Accessing a nonexisting page now results in NPE instead of error page
being shown.
After tomcat
