How to Disable Weak Ciphers and SSL 2.0 in Tomcat

If you are trying to disable a specific SSL or TLS version in Tomcat 6 and you are unable to do so using “sslEnabledProtocols”, check your version of Tomcat 6. Tomcat versions older than 6.0.38 should use “sslProtocols” not “sslEnabledProtocols” or “sslProtocol”. I found it unnecessary to specify “sslProtocol” or “sslEnabledProtocols” with “sslProtocols”. Using “sslProtocols” by itself resolved my problem.



I hope this helps!

Your article is usefull for me, thanks. In the example i see SSL, but in the first code snippet there is are SSLv3. Think, this is typo - SSLv3 is working for me.

Be careful when using these instructions, since some of the quotation marks in the solution are the wrong characters.

”SSLv3?

should be
"SSLv3"

Notice the difference in the slant on the quotes. I recommend deleting quotes and retyping them manually.

We tested these ciphers against SSL Labs' "SSL Server Test" tool (https://www.ssllabs.com/ssl.... According to the results, the following ciphers are weak, resulting in a "C" grade.

TLS_DHE_RSA_WITH_AES_128_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA

We removed those two ciphers, and moved up to a "B" grade.

The remaining issue is vulnerability to the "BEAST" attack, which is not possible to mitigate with the Java SSL implementation.

Our final connector tag looks like this:

<connector protocol="HTTP/1.1" scheme="https" secure="true" uriencoding="UTF-8" address="0.0.0.0" compressablemimetype="text/html,text/xml,application/json" compression="on" maxthreads="150" nocompressionuseragents="gozilla, traviata" port="443" sslenabled="true" sslprotocol="SSLv3" clientauth="false" keystorefile="/opt/rio/keystore.jks" keystorepass="%yay%ssl5" keyalias="privatekey" ciphers="SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA"/>

Hello,

how can I disable Cipher Suites like "secp160k1 (161 bits)" , "P-192 (prime192v1) (192 bits)", "B-163 (sect163r2) (163 bits)"

Thanks for pointing that out, Alex. I fixed the quotes.

How to Disable SSL 3.0 in Tomcat?

In 2014, specified in this article SSL Weak Ciphers is obsolete
You need use
ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA, TLS_ECDHE_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_RC4_128_SHA"

To use the 256 bit AES ciphers, it is necessary to install the JCE Unlimited Strength Jurisdiction Policy Files. However, 128 bit encryption should be enough for daily use.

Just using sslProtocol="TLS" along with the cipher list in this article does not appear to disable SSL 3.0 in Tomcat 6. At least not according to checks at https://ssltools.websecurit... and https://www.ssllabs.com/ssl...

The Tomcat6 documentation does indeed state that one has to use the sslEnabledProtcols attribute of the Connector tag to define protocols that will be used.

Unfortunately SSL3 is not disabled in Tomcat6 - or at least Symantec's test site says it is not - when protocols are defined as "TLSv1,TLSv1.1,TLSv1.2" That is as it "should be" according to Oracle's documentation.



Restricting the ciphers as suggested is definitely a good idea but does not in and of itself disable SSL v3 and in fact, again trusting Symantec, using only the suggested ciphers does not stop SSL v3.

Digging deeper into Tomcat6 docs suggests that when running with Java SE6 the "TLSv1,TLSv1.1" protocols are supported if the SSL provider is JSSE and if using Java SE7 or later TLSV1.2 is supported too. That can be confirmed at http://docs.oracle.com/java...



Unfortunately, all that digging also reveals that all variants of TLSv1* also allow SSL v3.

Thanks, Anders. I updated the connector with that information.

Thanks, Steve. I found something else but I don't have a machine to test it on. Can you verify that adding sslProtocols="TLSv1,TLSv1.1,TLSv1.2" works?

Using Tomcat 7, we disabled SSLv3 (and weak ciphers) using the following connector params:



SSLEnabled="true"

sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_RC4_128_SHA"



Note that using sslProtocols parameter did NOT work for us.

For those of you on Tomcat 6, just substitute "sslEnabledProtocols" parameter with "sslProtocols", such as:



SSLEnabled="true"

sslProtocols="TLSv1,TLSv1.1,TLSv1.2"

ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256,TLS_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_RC4_128_SHA"

You should just need to update the "sslProtocol" to use "TLS" instead of "SSL". I have updated the instructions to reflect this.

Thanks for this. I was able to solve the "Server has a weak ephemeral Diffie-Helman public key" error in Chrome by updating the ciphers. (although I didn't enable the ones you have here)

Worked like charm!! Thanks a ton!!