165 # and is trusted, we grant it AllPermission.
166 policy.ignoreIdentityScope=false
167
168 #
169 # Default keystore type.
170 #
171 keystore.type=jks
172
173 #
174 # List of comma-separated packages that start with or equal this string
175 # will cause a security exception to be thrown when
176 # passed to checkPackageAccess unless the
177 # corresponding RuntimePermission ("accessClassInPackage."+package) has
178 # been granted.
179 package.access=sun.,\
180 com.sun.xml.internal.,\
181 com.sun.imageio.,\
182 com.sun.istack.internal.,\
183 com.sun.jmx.,\
184 com.sun.media.sound.,\
185 com.sun.proxy.,\
186 com.sun.corba.se.,\
187 com.sun.org.apache.bcel.internal.,\
188 com.sun.org.apache.regexp.internal.,\
189 com.sun.org.apache.xerces.internal.,\
190 com.sun.org.apache.xpath.internal.,\
191 com.sun.org.apache.xalan.internal.extensions.,\
192 com.sun.org.apache.xalan.internal.lib.,\
193 com.sun.org.apache.xalan.internal.res.,\
194 com.sun.org.apache.xalan.internal.templates.,\
195 com.sun.org.apache.xalan.internal.utils.,\
196 com.sun.org.apache.xalan.internal.xslt.,\
197 com.sun.org.apache.xalan.internal.xsltc.cmdline.,\
198 com.sun.org.apache.xalan.internal.xsltc.compiler.,\
199 com.sun.org.apache.xalan.internal.xsltc.trax.,\
200 com.sun.org.apache.xalan.internal.xsltc.util.,\
201 com.sun.org.apache.xml.internal.res.,\
202 com.sun.org.apache.xml.internal.security.,\
203 com.sun.org.apache.xml.internal.serializer.utils.,\
204 com.sun.org.apache.xml.internal.utils.,\
211 jdk.nashorn.internal.,\
212 jdk.nashorn.tools.
213
214
215 #
216 # List of comma-separated packages that start with or equal this string
217 # will cause a security exception to be thrown when
218 # passed to checkPackageDefinition unless the
219 # corresponding RuntimePermission ("defineClassInPackage."+package) has
220 # been granted.
221 #
222 # by default, none of the class loaders supplied with the JDK call
223 # checkPackageDefinition.
224 #
225 package.definition=sun.,\
226 com.sun.xml.internal.,\
227 com.sun.imageio.,\
228 com.sun.istack.internal.,\
229 com.sun.jmx.,\
230 com.sun.media.sound.,\
231 com.sun.proxy.,\
232 com.sun.corba.se.,\
233 com.sun.org.apache.bcel.internal.,\
234 com.sun.org.apache.regexp.internal.,\
235 com.sun.org.apache.xerces.internal.,\
236 com.sun.org.apache.xpath.internal.,\
237 com.sun.org.apache.xalan.internal.extensions.,\
238 com.sun.org.apache.xalan.internal.lib.,\
239 com.sun.org.apache.xalan.internal.res.,\
240 com.sun.org.apache.xalan.internal.templates.,\
241 com.sun.org.apache.xalan.internal.utils.,\
242 com.sun.org.apache.xalan.internal.xslt.,\
243 com.sun.org.apache.xalan.internal.xsltc.cmdline.,\
244 com.sun.org.apache.xalan.internal.xsltc.compiler.,\
245 com.sun.org.apache.xalan.internal.xsltc.trax.,\
246 com.sun.org.apache.xalan.internal.xsltc.util.,\
247 com.sun.org.apache.xml.internal.res.,\
248 com.sun.org.apache.xml.internal.security.,\
249 com.sun.org.apache.xml.internal.serializer.utils.,\
250 com.sun.org.apache.xml.internal.utils.,\
477 #
478 # In some environments, certain algorithms or key lengths may be undesirable
479 # when using SSL/TLS. This section describes the mechanism for disabling
480 # algorithms during SSL/TLS security parameters negotiation, including cipher
481 # suites selection, peer authentication and key exchange mechanisms.
482 #
483 # For PKI-based peer authentication and key exchange mechanisms, this list
484 # of disabled algorithms will also be checked during certification path
485 # building and validation, including algorithms used in certificates, as
486 # well as revocation information such as CRLs and signed OCSP Responses.
487 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
488 #
489 # See the specification of "jdk.certpath.disabledAlgorithms" for the
490 # syntax of the disabled algorithm string.
491 #
492 # Note: This property is currently used by Oracle's JSSE implementation.
493 # It is not guaranteed to be examined and used by other implementations.
494 #
495 # Example:
496 # jdk.tls.disabledAlgorithms=MD5, SHA1, DSA, RSA keySize < 2048
497
|
165 # and is trusted, we grant it AllPermission.
166 policy.ignoreIdentityScope=false
167
168 #
169 # Default keystore type.
170 #
171 keystore.type=jks
172
173 #
174 # List of comma-separated packages that start with or equal this string
175 # will cause a security exception to be thrown when
176 # passed to checkPackageAccess unless the
177 # corresponding RuntimePermission ("accessClassInPackage."+package) has
178 # been granted.
179 package.access=sun.,\
180 com.sun.xml.internal.,\
181 com.sun.imageio.,\
182 com.sun.istack.internal.,\
183 com.sun.jmx.,\
184 com.sun.media.sound.,\
185 com.sun.naming.internal.,\
186 com.sun.proxy.,\
187 com.sun.corba.se.,\
188 com.sun.org.apache.bcel.internal.,\
189 com.sun.org.apache.regexp.internal.,\
190 com.sun.org.apache.xerces.internal.,\
191 com.sun.org.apache.xpath.internal.,\
192 com.sun.org.apache.xalan.internal.extensions.,\
193 com.sun.org.apache.xalan.internal.lib.,\
194 com.sun.org.apache.xalan.internal.res.,\
195 com.sun.org.apache.xalan.internal.templates.,\
196 com.sun.org.apache.xalan.internal.utils.,\
197 com.sun.org.apache.xalan.internal.xslt.,\
198 com.sun.org.apache.xalan.internal.xsltc.cmdline.,\
199 com.sun.org.apache.xalan.internal.xsltc.compiler.,\
200 com.sun.org.apache.xalan.internal.xsltc.trax.,\
201 com.sun.org.apache.xalan.internal.xsltc.util.,\
202 com.sun.org.apache.xml.internal.res.,\
203 com.sun.org.apache.xml.internal.security.,\
204 com.sun.org.apache.xml.internal.serializer.utils.,\
205 com.sun.org.apache.xml.internal.utils.,\
212 jdk.nashorn.internal.,\
213 jdk.nashorn.tools.
214
215
216 #
217 # List of comma-separated packages that start with or equal this string
218 # will cause a security exception to be thrown when
219 # passed to checkPackageDefinition unless the
220 # corresponding RuntimePermission ("defineClassInPackage."+package) has
221 # been granted.
222 #
223 # by default, none of the class loaders supplied with the JDK call
224 # checkPackageDefinition.
225 #
226 package.definition=sun.,\
227 com.sun.xml.internal.,\
228 com.sun.imageio.,\
229 com.sun.istack.internal.,\
230 com.sun.jmx.,\
231 com.sun.media.sound.,\
232 com.sun.naming.internal.,\
233 com.sun.proxy.,\
234 com.sun.corba.se.,\
235 com.sun.org.apache.bcel.internal.,\
236 com.sun.org.apache.regexp.internal.,\
237 com.sun.org.apache.xerces.internal.,\
238 com.sun.org.apache.xpath.internal.,\
239 com.sun.org.apache.xalan.internal.extensions.,\
240 com.sun.org.apache.xalan.internal.lib.,\
241 com.sun.org.apache.xalan.internal.res.,\
242 com.sun.org.apache.xalan.internal.templates.,\
243 com.sun.org.apache.xalan.internal.utils.,\
244 com.sun.org.apache.xalan.internal.xslt.,\
245 com.sun.org.apache.xalan.internal.xsltc.cmdline.,\
246 com.sun.org.apache.xalan.internal.xsltc.compiler.,\
247 com.sun.org.apache.xalan.internal.xsltc.trax.,\
248 com.sun.org.apache.xalan.internal.xsltc.util.,\
249 com.sun.org.apache.xml.internal.res.,\
250 com.sun.org.apache.xml.internal.security.,\
251 com.sun.org.apache.xml.internal.serializer.utils.,\
252 com.sun.org.apache.xml.internal.utils.,\
479 #
480 # In some environments, certain algorithms or key lengths may be undesirable
481 # when using SSL/TLS. This section describes the mechanism for disabling
482 # algorithms during SSL/TLS security parameters negotiation, including cipher
483 # suites selection, peer authentication and key exchange mechanisms.
484 #
485 # For PKI-based peer authentication and key exchange mechanisms, this list
486 # of disabled algorithms will also be checked during certification path
487 # building and validation, including algorithms used in certificates, as
488 # well as revocation information such as CRLs and signed OCSP Responses.
489 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
490 #
491 # See the specification of "jdk.certpath.disabledAlgorithms" for the
492 # syntax of the disabled algorithm string.
493 #
494 # Note: This property is currently used by Oracle's JSSE implementation.
495 # It is not guaranteed to be examined and used by other implementations.
496 #
497 # Example:
498 # jdk.tls.disabledAlgorithms=MD5, SHA1, DSA, RSA keySize < 2048
|