Weak Diffie-Hellman and the Logjam Attack

maurice1471270175 · August 15, 2016, 2:28pm

Hi,

Is there someone who has experience with implementing/configuring tomcat against; Diffie-Hellman and the Logjam Attack https://weakdh.org/ Logjam: PFS Deployment Guide
There is a section “Apache Tomcat” (2nd URL) which describes what ciphers to add in the server.xml but i really don’t have a clue what to do with the dhparams.pem generated in the first step and how to implement it in tomcat/keystore?

Any ideas?

Thanks…

maurice · August 17, 2016, 9:07am

I solved it using the right set of ciphers. went from F to an A rating

Peter_de_Groot · August 17, 2016, 12:20pm

maurice:
I solved it using the right set of ciphers. went from F to an A rating

Guru

svisser1448437380 · August 22, 2016, 8:52am

I installed Nginx as reverse proxy in front of the application server and put all security in there. I also use this to block the /servoy-admin and /servoy-client pages for the public access.

Topic		Replies	Views
SSL Question Classic Servoy	21	13261	August 16, 2012
Java 17+ SSL Issue with Version 2019.3.2 Questions	12	12701	December 17, 2024
Tomcat 9.0.x AJP vulnerability Questions	2	3063	February 27, 2020
SSL Classic Servoy	35	29285	March 17, 2013
Tomcat Hosting Questions	2	3380	June 12, 2020

Weak Diffie-Hellman and the Logjam Attack

Related topics