486877 - Google Chrome flagging 'obsolete cipher suite' in Jetty and will soon issue broken padlock

+ Rely on SslContextFactory defaults for Includes/Excludes of Cipher
  Suites
+ Reference documentation for advice on setting up custom includes
  and excludes

jetty-server/src/main/config/etc/jetty-ssl-context.xml

@@ -17,16 +17,8 @@
   <Set name="EndpointIdentificationAlgorithm"></Set>
   <Set name="NeedClientAuth"><Property name="jetty.sslContext.needClientAuth" deprecated="jetty.ssl.needClientAuth" default="false"/></Set>
   <Set name="WantClientAuth"><Property name="jetty.sslContext.wantClientAuth" deprecated="jetty.ssl.wantClientAuth" default="false"/></Set>
-  <Set name="ExcludeCipherSuites">
-   <Array type="String">
-    <Item>SSL_RSA_WITH_DES_CBC_SHA</Item>
-    <Item>SSL_DHE_RSA_WITH_DES_CBC_SHA</Item>
-    <Item>SSL_DHE_DSS_WITH_DES_CBC_SHA</Item>
-    <Item>SSL_RSA_EXPORT_WITH_RC4_40_MD5</Item>
-    <Item>SSL_RSA_EXPORT_WITH_DES40_CBC_SHA</Item>
-    <Item>SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA</Item>
-    <Item>SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA</Item>
-   </Array>
-  </Set>
+  <!-- To configure Includes / Excludes for Cipher Suites or Protocols see tweak-ssl.xml example at 
+       https://www.eclipse.org/jetty/documentation/current/configuring-ssl.html#configuring-sslcontextfactory-cipherSuites
+    -->
   <Set name="useCipherSuitesOrder"><Property name="jetty.sslContext.useCipherSuitesOrder" default="true"/></Set>
 </Configure>

jetty-server/src/main/config/modules/ssl.mod

@@ -87,3 +87,6 @@ http://git.eclipse.org/c/jetty/org.eclipse.jetty.project.git/plain/jetty-server/
 ## Whether cipher order is significant (since java 8 only)
 # jetty.sslContext.useCipherSuitesOrder=true
 
+## To configure Includes / Excludes for Cipher Suites or Protocols see tweak-ssl.xml example at
+## https://www.eclipse.org/jetty/documentation/current/configuring-ssl.html#configuring-sslcontextfactory-cipherSuites
+