I don't use TLS and even if I would use it, I would use nginx frontend. My subse... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

vbezhenar on Feb 25, 2018 | parent | context | favorite | on: JDK 10 Early Access Release Notes

I don't use TLS and even if I would use it, I would use nginx frontend. My subset is fairy common, Spring+JDBC, sometimes Hibernate, sometimes pure servlets, but basically all interaction between outer world is via HTTP interface implemented in Tomcat.

toyg on Feb 25, 2018 [–]

A targeted attack would probably hole you fairly easily then. Cleartext means you’re likely open to all sorts of replay attacks and data leaks, which can then be escalated to exploit vulnerable libs and jvm.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact