I tested oracle TLS support with cipher suite "TLS_RSA_WITH_AES_256_CBC_SHA"
Java (Client - Jdk 1.7.0.5) - JDBC – Oracle (Server
VM Options : -Djavax.net.debug=all
main, READ: TLSv1 Handshake, length = 81*** ServerHello, TLSv1RandomCookie: GMT: 1405236445 bytes = { 104, 151, 207, 208, 242, 84, 195, 187, 161, 109, 49, 113, 148, 67, 135, 249, 11, 210, 24, 99, 41, 112, 40, 71, 48, 99, 222, 8 }Session ID: {64, 188, 64, 213, 5, 87, 244, 193, 34, 160, 153, 25, 27, 50, 253, 231, 203, 165, 27, 12, 96, 185, 233, 41, 22, 109, 24, 132, 204, 26, 182, 130}
With the same cipher suite,
Oracle (Client) – Oracle (Server)
Moreover, In release 12.1.0.2, Oracle adds a new parameter "SQLNET.HTTPS_SSL_VERSION". Default value of this parameter is 1.1 and it can get values of "1.1" and "1.2" meaning TLS v1.1 and TLS v1.2. Detailed information is here
Been trying to use this parameter with my 12.1.0.2 db, but matter what value I set it to, my Apache 2.2 web server reports TLSv1.2 being used to connect. I've got it set in my SQLNET.ORA file, which is where I'd figure SQLNET.HTTPS_SSL_VERSION should go. Is there another setting I'm missing somewhere?
ReplyDelete