I recently configured an AWS EC2 server instance running Apache
Tomcat 6.0.16. No other browser seems to complain but Google Chrome returns the following warning when clicking on the SSL/lock icon.
The connection had to be retried with SSL 3.0. This typically means the server is using very old software and may have other security issues.
Does this message indicate that Tomcat needs to be upgraded? Or am I missing some configuration option?
Additionally, Chrome and Opera return the warning:
The server does not support the TLS renegotiation extension.
I have noticed that many secure sites, amazon.com, for example, also have this warning when viewed in Chrome and Opera. Is this warning anything to be overly concerned about?
Thanks in advance!