| Log Message: |
DERBY-6764(analyze impact of poodle security alert on Derby client - server ssl support)
Removed SSLv3 and SSLv2Hello from list of enabled protocols on the client and server side to avoid poodle security breach. Also, changed NaiveTrustManager to use TLS as the default protocol rather than SSL. If NaiveTrustManager used SSL, then it won't find any enabled protocols for SSL after the removal of SSLv3 and SSLv2Hello. Changing it to TLS makes TLS protocols available for communication.
|
db/derby/code/trunk/java/client/org/apache/derby/client/net/NaiveTrustManager.java