Does the option "-Dsun.security.ssl.allowUnsafeRenegotiation=true" work in IBM's JVM that ships with WebSphere 7
Asked
Active
Viewed 4,406 times
1 Answers
1
No. What would work is
com.ibm.jsse2.renegotiate=none
But even this option works only after you install the actualy fixes for the renegotiating vulnerabilities. The level with the required fixes is SR6.
erloewe
- 1,319
- 9
- 20