Need to upgrade to TLS 1.2, Amazon SES called from EC2 instance running SmartFoxServer

Hello everyone,

I'm receiving messages from AWS telling me to upgrade to TLS 1.2 and am a bit at loss on how to do this.

SmartFoxServer 2x (SFS2X) version 2.15 on a Linux 2 EC2 instance. SFS2X comes with its own JRE / Apache configuration and you can run a Java program inside it which handles a multiplayer game's logic. In the build Libraries of that Java program I've added javax.mail.jar (version 1.6.2 I think, according to the manifest files inside it) which is supposed to support TLS 1.2.

The players on their mobile apps connect to the server via sockets and send commands, such as "send a new password to my e-mail" and so the Java program running on the server/EC2 instance makes a call to the SES endpoint using my verified credentials, and sends a reset password e-mail to the player.

This works fine, the player receives the e-mail. But I don't know why it's using TLS v1 or v1.1. As you'll see below 1.2 is forced programmatically with props.put("mail.smtp.ssl.protocols", "TLSv1.2");

If I run this command on Putty when connected to the instance

openssl ciphers -v | awk '{print $2}' | sort | uniq

It returns

SSLv3
TLSv1.2

So it seems to be enabled. My code looks like this:


Properties props = System.getProperties();
props.put("mail.transport.protocol", "smtp");
props.put("mail.smtp.port", 587);
props.put("mail.smtp.starttls.enable", "true");
props.put("mail.smtp.auth", "true");
props.put("mail.smtp.ssl.protocols", "TLSv1.2");

// Create a Session object to represent a mail session with the specified properties.
Session session2 = Session.getDefaultInstance(props);

try {
    // Create a message with the specified information.

    MimeMessage msg = new MimeMessage(session2);
    msg.setFrom(new InternetAddress("MyVerifiedEmail@email.com","Game App"));
    msg.setRecipient(Message.RecipientType.TO, new InternetAddress("RecipientEmail@email.com"));
    msg.setSubject("Here is your new password");
    msg.setContent("Your new password is XYZ","text/html");

    // Add a configuration set header. Comment or delete the
    // next line if you are not using a configuration set
    //msg.setHeader("X-SES-CONFIGURATION-SET", CONFIGSET);  commented, not actually used

    // Create a transport.
    transport = session2.getTransport();

    // Send the message.
    ext.trace("Sending...");

    transport.connect("email-smtp.us-east-1.amazonaws.com", 587, MyUserName, MyPassword);

    // Send the email.
    transport.sendMessage(msg, msg.getAllRecipients());
    ext.trace("Email sent!");

    // Close and terminate the connection.
    transport.close();

}

Any clue would be much appreciated. Thank you

Topics

Compute Front-End Web & Mobile Business Applications Internet of Things (IoT)

Relevant content

How to upgrade TLS used by MTA towards SES on Linux
Afrinico
asked 7 months ago
Getting failure while sending mail from MS SQL send dbmail to amazon ses even after upgrading to tls 1.2
shruti
asked 5 months ago
Upgrade SLES for SAP 12 to 15 From Marketplace
tahmeed
asked 3 months ago
RDS Postgres major upgrade from 12 to 13 fails
rePost-User-4879440
asked 2 years ago
How can I upgrade my EC2 Windows Server instance to a newer version?
AWS OFFICIALUpdated 8 months ago
How do I upgrade Ubuntu on my EC2 Linux instance from one LTS version to another?
AWS OFFICIALUpdated 7 months ago
How can I use Amazon SES to receive inbound emails, and then store those emails on Amazon S3?
AWS OFFICIALUpdated a year ago
What do I need to do to update my SSL/TLS certificate for an Amazon RDS DB instance or Aurora DB cluster?
AWS OFFICIALUpdated 10 months ago
How to troubleshoot TLS connection issues with your AWS IoT Core endpoint
EXPERT
Charlyscott237
published 7 months ago
Enabling TLS 1.2 Client Side Support on EC2 Windows Server 2012 to 2022
EXPERT
Jonathan_D
published a year ago