Cleanup comments. Prefer stronger suite (reorder)

akka-remote/src/main/resources/reference.conf

@@ -656,9 +656,7 @@ akka {
         # This password is used for decrypting the trust store
         trust-store-password = "changeme"
 
-        # Protocol to use for SSL encryption, choose from:
-        # TLS 1.2 is available since JDK7, and default since JDK8:
-        # https://blogs.oracle.com/java-platform-group/entry/java_8_will_use_tls
+        # Protocol to use for SSL encryption.
         protocol = "TLSv1.2"
 
         # Example: ["TLS_DHE_RSA_WITH_AES_128_GCM_SHA256", 
@@ -671,8 +669,8 @@ akka {
         # the JCE Unlimited Strength Jurisdiction Policy Files to use AES 256.
         # More info here:
         # https://www.oracle.com/java/technologies/javase-jce-all-downloads.html
-        enabled-algorithms = ["TLS_RSA_WITH_AES_128_CBC_SHA",
-        "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384"]
+        enabled-algorithms = ["TLS_DHE_RSA_WITH_AES_256_GCM_SHA384",
+          "TLS_RSA_WITH_AES_128_CBC_SHA"]
 
         # There are two options, and the default SecureRandom is recommended:
         # "" or "SecureRandom" => (default)
@@ -1133,9 +1131,7 @@ akka {
           # real passwords in config files. trust-store-password=${SSL_TRUST_STORE_PASSWORD}
           trust-store-password = "changeme"
 
-          # Protocol to use for SSL encryption, choose from:
-          # TLS 1.2 is available since JDK7, and default since JDK8:
-          # https://blogs.oracle.com/java-platform-group/entry/java_8_will_use_tls
+          # Protocol to use for SSL encryption.
           protocol = "TLSv1.2"
 
           # Example: ["TLS_DHE_RSA_WITH_AES_128_GCM_SHA256", 
@@ -1148,8 +1144,8 @@ akka {
           # the JCE Unlimited Strength Jurisdiction Policy Files to use AES 256.
           # More info here:
           # https://www.oracle.com/java/technologies/javase-jce-all-downloads.html
-          enabled-algorithms = ["TLS_RSA_WITH_AES_128_CBC_SHA",
-          "TLS_DHE_RSA_WITH_AES_256_GCM_SHA384"]
+          enabled-algorithms = ["TLS_DHE_RSA_WITH_AES_256_GCM_SHA384",
+            "TLS_RSA_WITH_AES_128_CBC_SHA"]
 
           # There are two options, and the default SecureRandom is recommended:
           # "" or "SecureRandom" => (default)
@@ -1222,9 +1218,7 @@ akka {
           # https://www.oracle.com/java/technologies/javase-jce-all-downloads.html
           enabled-algorithms = ["TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384"]
 
-          # Protocol to use for SSL encryption, choose from:
-          # TLS 1.2 is available since JDK7, and default since JDK8:
-          # https://blogs.oracle.com/java-platform-group/entry/java_8_will_use_tls
+          # Protocol to use for SSL encryption.
           protocol = "TLSv1.2"
 
           # How long should an SSLContext instance be cached. When rotating keys and certificates,