问题
I have an answer which can disable unwanted protocols/ciphers (TLSv1.0 and 3DES based ciphers) for management console in Tomcat(port: 9443), Disable weakened protocols/ciphers in WSO2AM-1.10.0.
however, I have no idea how can I apply the same settings to API connection in Axis server (Port 443) like below,
The API connection using 443 port seems still support TLSv1 as tested by sslsscan,
Thanks,Sean
回答1:
You need to change the following pass-through settings in repository/conf/axis2/axis2.xml file.
<transportReceiver name="passthru-https" class="org.wso2.carbon.transport.passthru.PassThroughHttpSSLListener"> <parameter name="HttpsProtocols">TLSv1,TLSv1.1,TLSv1.2</parameter> ...... </transportReceiver>
来源:https://stackoverflow.com/questions/43837167/remove-weakened-protocols-in-wso2-1-10-0