I use Apache or the built-in Jetty to serve my application. For Jetty, I selected some coding suits that I want to use and set them using setIncludeCipherSuites(String[] names) . In the Jetty documentation ( http://wiki.eclipse.org/Jetty/Howto/CipherSuites ), I found that: Keep in mind that you must specify the cipher suite in order of preference.
But the SSL report from https://www.ssllabs.com/ssltest/ reports that:
Cipher Suites (sorted by strength; the server has no preference) TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xc027) ECDH 571 bits (eq. 15360 bits RSA) FS 128 (3 other suites I use)
For Apache, I got:
Cipher Suites (SSL 3+ suites in server-preferred order, then SSL 2 suites where used)
It seems that for the Jetty order in which I set the elements in setIncludeCipherSuites() , it makes no sense. Is there a way to set the order of preferred cipher suites?
java ssl jetty
MichaΕ Niklas
source share