Uploaded image for project: 'ActiveMQ Classic'
  1. ActiveMQ Classic
  2. AMQ-5970

Weak ethereal DH key bug

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Won't Fix
    • 5.12.0
    • None
    • None

    • JDK 1.7.0_79

    Description

      All modern browser's throw " SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. (Error code: ssl_error_weak_server_ephemeral_dh_key) " when attempting to connect to a secure websocket via activemq. This appears to be related to enabling and disabling the correct cipher suite (though no combination using the transport.enabledCipherSuites=… option seems to work).

      Attachments

        Issue Links

          relates to

          Improvement - An improvement or enhancement to an existing feature or task. AMQ-4520 Allow the bouncy castle security provider to be used if present in the lib dir.

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              lmann2 Laura Mann
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: