Oracle Java 8 problems due to TLS policy change
helpcrypto helpcrypto
helpcrypto at gmail.com
Fri May 16 07:36:04 UTC 2014
Super Ping!
On Mon, Apr 14, 2014 at 2:41 PM, helpcrypto helpcrypto <helpcrypto at gmail.com
> wrote:
> Hi Andrew, thx for replying.
>
> On Fri, Apr 11, 2014 at 8:19 PM, Andrew Hughes <gnu.andrew at redhat.com>wrote:
>
>>
>> ----- Original Message -----
>> > Ping?
>> >
>> > On Fri, Apr 4, 2014 at 11:03 AM, helpcrypto helpcrypto <
>> helpcrypto at gmail.com
>> > > wrote:
>> >
>> > > According to
>> > >
>> http://docs.oracle.com/javase/8/docs/technotes/guides/security/enhancements-8.htmlOracle
>> > > Java 8 now uses TLS1.1 and TLS1.2 (both enabled by default on
>> > > Control Panel).
>> > >
>> > > This seems to be causing an error in our applet loading. Problem seems
>> > > solved if both unchecked. Funny thing is our server only supports
>> TLS1.0.
>> > >
>> > > Is icedtea8 following the same TLS policy? (switching to TLS1.1 and
>> TLS1.2)
>> > > If so, i should check if the same error appears.
>> > >
>>
>> I'm not sure what you're referring to here. There is no control panel in
>> IcedTea/OpenJDK 6, 7 or 8. I seem to remember TLS 1.2 support being added
>> as part of 7 (it was one of the reasons for the addition of an explicit
>> ECC provider).
>>
>
Maybe Jiri can chime in here?
> Oracle Java 8 JRE has enabled (by default) TLS 1.1 and TLS 1.2 and that's
> causing some problems in our case. I was wondering how OpenJDK/Icedtea is
> handling protocol priorities/this issue.
>
> Is there such a thing as "Icedtea-Web JRE 8" so I can test?
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.openjdk.java.net/pipermail/distro-pkg-dev/attachments/20140516/2759ad8a/attachment.html>
More information about the distro-pkg-dev
mailing list