{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 太酷不给撩 的问题《Jetty IncludeCipherSuites enables only TLS 1.2》','https://www.manongdao.com/q-1079203.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
In my jetty configuration file I am using ExcludeCipherSuites tag to exclude some protocols and everything works fine and my jetty server supports all TLS versions (1.0, 1.1, 1.2).
However when instead of excluding bad ciphers, I use IncludeCipherSuites to include only supported ciphers, my jetty server starts supporting only TLS 1.2. Other TLS versions (1.0 and 1.1) are becoming not supported.
I even tried to whitelist all possible ciphers using IncludeCipherSuites like below:
<Set name="IncludeCipherSuites">
<Array type="java.lang.String">
<Item>.*</Item>
</Array>
</Set>
But again the same result - TLS 1.2 is supported, TLS 1.0 and 1.1 is not supported.
I found a similar question but it didn't have proper answer: Configuring SSL cipher suites for Jetty
Can someone help me understand what's wrong with IncludeCipherSuites option? or What am I doing wrong?
Thanks
Excludewins overIncludeJust adding them to includes does nothing if they are already excluded (which they are).
Follow the instructions on the prior answer and redeclare the excludes (like the suggestions and documentation do)