(RESOLVED) help with tomcat ciphers and nessus scans
I'm being told by the nessus scanning tool that the SSL ciphers offered by my RTC instance on tomcat are too low.
I've gone to the tomcat and jsse references and added a cipers= string to my ssl connector config in /tomcat/conf/server.xml, but I'm not seeing any difference in scan results. I also see nothing in any logs about ciphers, ssl or other security related failures, but I may not be looking where I should.
Can anybody point me in a positive direction for this?
I've gone to the tomcat and jsse references and added a cipers= string to my ssl connector config in /tomcat/conf/server.xml, but I'm not seeing any difference in scan results. I also see nothing in any logs about ciphers, ssl or other security related failures, but I may not be looking where I should.
Can anybody point me in a positive direction for this?