48 # for the Java Security API to look up the algorithms or other
49 # facilities implemented by the provider.
50 #
51 # There must be at least one provider specification in java.security.
52 # There is a default provider that comes standard with the JDK. It
53 # is called the "SUN" provider, and its Provider subclass
54 # named Sun appears in the sun.security.provider package. Thus, the
55 # "SUN" provider is registered via the following:
56 #
57 # security.provider.1=sun.security.provider.Sun
58 #
59 # (The number 1 is used for the default provider.)
60 #
61 # Note: Providers can be dynamically registered instead by calls to
62 # either the addProvider or insertProviderAt method in the Security
63 # class.
64
65 #
66 # List of providers and their preference orders (see above):
67 #
68 security.provider.1=com.oracle.security.ucrypto.UcryptoProvider ${java.home}/lib/security/ucrypto-solaris.cfg
69 security.provider.2=sun.security.pkcs11.SunPKCS11 ${java.home}/lib/security/sunpkcs11-solaris.cfg
70 security.provider.3=sun.security.provider.Sun
71 security.provider.4=sun.security.rsa.SunRsaSign
72 security.provider.5=sun.security.ec.SunEC
73 security.provider.6=com.sun.net.ssl.internal.ssl.Provider
74 security.provider.7=com.sun.crypto.provider.SunJCE
75 security.provider.8=sun.security.jgss.SunProvider
76 security.provider.9=com.sun.security.sasl.Provider
77 security.provider.10=org.jcp.xml.dsig.internal.dom.XMLDSigRI
78 security.provider.11=sun.security.smartcardio.SunPCSC
79
80 #
81 # Sun Provider SecureRandom seed source.
82 #
83 # Select the primary source of seed data for the "SHA1PRNG" and
84 # "NativePRNG" SecureRandom implementations in the "Sun" provider.
85 # (Other SecureRandom implementations might also use this property.)
86 #
87 # On Unix-like systems (for example, Solaris/Linux/MacOS), the
88 # "NativePRNG" and "SHA1PRNG" implementations obtains seed data from
89 # special device files such as file:/dev/random.
90 #
91 # On Windows systems, specifying the URLs "file:/dev/random" or
92 # "file:/dev/urandom" will enable the native Microsoft CryptoAPI seeding
93 # mechanism for SHA1PRNG.
94 #
95 # By default, an attempt is made to use the entropy gathering device
96 # specified by the "securerandom.source" Security property. If an
97 # exception occurs while accessing the specified URL:
98 #
111 #
112 # Specifying this System property will override the
113 # "securerandom.source" Security property.
114 #
115 # In addition, if "file:/dev/random" or "file:/dev/urandom" is
116 # specified, the "NativePRNG" implementation will be more preferred than
117 # SHA1PRNG in the Sun provider.
118 #
119 securerandom.source=file:/dev/random
120
121 #
122 # A list of known strong SecureRandom implementations.
123 #
124 # To help guide applications in selecting a suitable strong
125 # java.security.SecureRandom implementation, Java distributions should
126 # indicate a list of known strong implementations using the property.
127 #
128 # This is a comma-separated list of algorithm and/or algorithm:provider
129 # entries.
130 #
131 securerandom.strongAlgorithms=NativePRNGBlocking:SUN
132
133 #
134 # Class to instantiate as the javax.security.auth.login.Configuration
135 # provider.
136 #
137 login.configuration.provider=sun.security.provider.ConfigFile
138
139 #
140 # Default login configuration file
141 #
142 #login.config.url.1=file:${user.home}/.java.login.config
143
144 #
145 # Class to instantiate as the system Policy. This is the name of the class
146 # that will be used as the Policy object.
147 #
148 policy.provider=sun.security.provider.PolicyFile
149
150 # The default is to have a single system-wide policy file,
151 # and a policy file in the user's home directory.
195 com.sun.org.apache.xalan.internal.lib.,\
196 com.sun.org.apache.xalan.internal.res.,\
197 com.sun.org.apache.xalan.internal.templates.,\
198 com.sun.org.apache.xalan.internal.utils.,\
199 com.sun.org.apache.xalan.internal.xslt.,\
200 com.sun.org.apache.xalan.internal.xsltc.cmdline.,\
201 com.sun.org.apache.xalan.internal.xsltc.compiler.,\
202 com.sun.org.apache.xalan.internal.xsltc.trax.,\
203 com.sun.org.apache.xalan.internal.xsltc.util.,\
204 com.sun.org.apache.xml.internal.res.,\
205 com.sun.org.apache.xml.internal.security.,\
206 com.sun.org.apache.xml.internal.serializer.utils.,\
207 com.sun.org.apache.xml.internal.utils.,\
208 com.sun.org.glassfish.,\
209 com.oracle.xmlns.internal.,\
210 com.oracle.webservices.internal.,\
211 org.jcp.xml.dsig.internal.,\
212 jdk.internal.,\
213 jdk.nashorn.internal.,\
214 jdk.nashorn.tools.,\
215 com.sun.activation.registries.
216
217 #
218 # List of comma-separated packages that start with or equal this string
219 # will cause a security exception to be thrown when
220 # passed to checkPackageDefinition unless the
221 # corresponding RuntimePermission ("defineClassInPackage."+package) has
222 # been granted.
223 #
224 # by default, none of the class loaders supplied with the JDK call
225 # checkPackageDefinition.
226 #
227 package.definition=sun.,\
228 com.sun.xml.internal.,\
229 com.sun.imageio.,\
230 com.sun.istack.internal.,\
231 com.sun.jmx.,\
232 com.sun.media.sound.,\
233 com.sun.naming.internal.,\
234 com.sun.proxy.,\
235 com.sun.corba.se.,\
241 com.sun.org.apache.xalan.internal.lib.,\
242 com.sun.org.apache.xalan.internal.res.,\
243 com.sun.org.apache.xalan.internal.templates.,\
244 com.sun.org.apache.xalan.internal.utils.,\
245 com.sun.org.apache.xalan.internal.xslt.,\
246 com.sun.org.apache.xalan.internal.xsltc.cmdline.,\
247 com.sun.org.apache.xalan.internal.xsltc.compiler.,\
248 com.sun.org.apache.xalan.internal.xsltc.trax.,\
249 com.sun.org.apache.xalan.internal.xsltc.util.,\
250 com.sun.org.apache.xml.internal.res.,\
251 com.sun.org.apache.xml.internal.security.,\
252 com.sun.org.apache.xml.internal.serializer.utils.,\
253 com.sun.org.apache.xml.internal.utils.,\
254 com.sun.org.glassfish.,\
255 com.oracle.xmlns.internal.,\
256 com.oracle.webservices.internal.,\
257 org.jcp.xml.dsig.internal.,\
258 jdk.internal.,\
259 jdk.nashorn.internal.,\
260 jdk.nashorn.tools.,\
261 com.sun.activation.registries.
262
263 #
264 # Determines whether this properties file can be appended to
265 # or overridden on the command line via -Djava.security.properties
266 #
267 security.overridePropertiesFile=true
268
269 #
270 # Determines the default key and trust manager factory algorithms for
271 # the javax.net.ssl package.
272 #
273 ssl.KeyManagerFactory.algorithm=SunX509
274 ssl.TrustManagerFactory.algorithm=PKIX
275
276 #
277 # The Java-level namelookup cache policy for successful lookups:
278 #
279 # any negative value: caching forever
280 # any positive value: the number of seconds to cache an address for
281 # zero: do not cache
|
48 # for the Java Security API to look up the algorithms or other
49 # facilities implemented by the provider.
50 #
51 # There must be at least one provider specification in java.security.
52 # There is a default provider that comes standard with the JDK. It
53 # is called the "SUN" provider, and its Provider subclass
54 # named Sun appears in the sun.security.provider package. Thus, the
55 # "SUN" provider is registered via the following:
56 #
57 # security.provider.1=sun.security.provider.Sun
58 #
59 # (The number 1 is used for the default provider.)
60 #
61 # Note: Providers can be dynamically registered instead by calls to
62 # either the addProvider or insertProviderAt method in the Security
63 # class.
64
65 #
66 # List of providers and their preference orders (see above):
67 #
68 #ifdef solaris
69 security.provider.tbd=com.oracle.security.ucrypto.UcryptoProvider ${java.home}/lib/security/ucrypto-solaris.cfg
70 security.provider.tbd=sun.security.pkcs11.SunPKCS11 ${java.home}/lib/security/sunpkcs11-solaris.cfg
71 #endif
72 security.provider.tbd=sun.security.provider.Sun
73 security.provider.tbd=sun.security.rsa.SunRsaSign
74 security.provider.tbd=sun.security.ec.SunEC
75 security.provider.tbd=com.sun.net.ssl.internal.ssl.Provider
76 security.provider.tbd=com.sun.crypto.provider.SunJCE
77 security.provider.tbd=sun.security.jgss.SunProvider
78 security.provider.tbd=com.sun.security.sasl.Provider
79 security.provider.tbd=org.jcp.xml.dsig.internal.dom.XMLDSigRI
80 security.provider.tbd=sun.security.smartcardio.SunPCSC
81 #ifdef windows
82 security.provider.tbd=sun.security.mscapi.SunMSCAPI
83 #endif
84 #ifdef macosx
85 security.provider.tbd=apple.security.AppleProvider
86 #endif
87
88 #
89 # Sun Provider SecureRandom seed source.
90 #
91 # Select the primary source of seed data for the "SHA1PRNG" and
92 # "NativePRNG" SecureRandom implementations in the "Sun" provider.
93 # (Other SecureRandom implementations might also use this property.)
94 #
95 # On Unix-like systems (for example, Solaris/Linux/MacOS), the
96 # "NativePRNG" and "SHA1PRNG" implementations obtains seed data from
97 # special device files such as file:/dev/random.
98 #
99 # On Windows systems, specifying the URLs "file:/dev/random" or
100 # "file:/dev/urandom" will enable the native Microsoft CryptoAPI seeding
101 # mechanism for SHA1PRNG.
102 #
103 # By default, an attempt is made to use the entropy gathering device
104 # specified by the "securerandom.source" Security property. If an
105 # exception occurs while accessing the specified URL:
106 #
119 #
120 # Specifying this System property will override the
121 # "securerandom.source" Security property.
122 #
123 # In addition, if "file:/dev/random" or "file:/dev/urandom" is
124 # specified, the "NativePRNG" implementation will be more preferred than
125 # SHA1PRNG in the Sun provider.
126 #
127 securerandom.source=file:/dev/random
128
129 #
130 # A list of known strong SecureRandom implementations.
131 #
132 # To help guide applications in selecting a suitable strong
133 # java.security.SecureRandom implementation, Java distributions should
134 # indicate a list of known strong implementations using the property.
135 #
136 # This is a comma-separated list of algorithm and/or algorithm:provider
137 # entries.
138 #
139 #ifdef windows
140 securerandom.strongAlgorithms=Windows-PRNG:SunMSCAPI,SHA1PRNG:SUN
141 #endif
142 #ifndef windows
143 securerandom.strongAlgorithms=NativePRNGBlocking:SUN
144 #endif
145
146 #
147 # Class to instantiate as the javax.security.auth.login.Configuration
148 # provider.
149 #
150 login.configuration.provider=sun.security.provider.ConfigFile
151
152 #
153 # Default login configuration file
154 #
155 #login.config.url.1=file:${user.home}/.java.login.config
156
157 #
158 # Class to instantiate as the system Policy. This is the name of the class
159 # that will be used as the Policy object.
160 #
161 policy.provider=sun.security.provider.PolicyFile
162
163 # The default is to have a single system-wide policy file,
164 # and a policy file in the user's home directory.
208 com.sun.org.apache.xalan.internal.lib.,\
209 com.sun.org.apache.xalan.internal.res.,\
210 com.sun.org.apache.xalan.internal.templates.,\
211 com.sun.org.apache.xalan.internal.utils.,\
212 com.sun.org.apache.xalan.internal.xslt.,\
213 com.sun.org.apache.xalan.internal.xsltc.cmdline.,\
214 com.sun.org.apache.xalan.internal.xsltc.compiler.,\
215 com.sun.org.apache.xalan.internal.xsltc.trax.,\
216 com.sun.org.apache.xalan.internal.xsltc.util.,\
217 com.sun.org.apache.xml.internal.res.,\
218 com.sun.org.apache.xml.internal.security.,\
219 com.sun.org.apache.xml.internal.serializer.utils.,\
220 com.sun.org.apache.xml.internal.utils.,\
221 com.sun.org.glassfish.,\
222 com.oracle.xmlns.internal.,\
223 com.oracle.webservices.internal.,\
224 org.jcp.xml.dsig.internal.,\
225 jdk.internal.,\
226 jdk.nashorn.internal.,\
227 jdk.nashorn.tools.,\
228 com.sun.activation.registries.,\
229 #ifdef macosx
230 apple.,\
231 #endif
232
233 #
234 # List of comma-separated packages that start with or equal this string
235 # will cause a security exception to be thrown when
236 # passed to checkPackageDefinition unless the
237 # corresponding RuntimePermission ("defineClassInPackage."+package) has
238 # been granted.
239 #
240 # by default, none of the class loaders supplied with the JDK call
241 # checkPackageDefinition.
242 #
243 package.definition=sun.,\
244 com.sun.xml.internal.,\
245 com.sun.imageio.,\
246 com.sun.istack.internal.,\
247 com.sun.jmx.,\
248 com.sun.media.sound.,\
249 com.sun.naming.internal.,\
250 com.sun.proxy.,\
251 com.sun.corba.se.,\
257 com.sun.org.apache.xalan.internal.lib.,\
258 com.sun.org.apache.xalan.internal.res.,\
259 com.sun.org.apache.xalan.internal.templates.,\
260 com.sun.org.apache.xalan.internal.utils.,\
261 com.sun.org.apache.xalan.internal.xslt.,\
262 com.sun.org.apache.xalan.internal.xsltc.cmdline.,\
263 com.sun.org.apache.xalan.internal.xsltc.compiler.,\
264 com.sun.org.apache.xalan.internal.xsltc.trax.,\
265 com.sun.org.apache.xalan.internal.xsltc.util.,\
266 com.sun.org.apache.xml.internal.res.,\
267 com.sun.org.apache.xml.internal.security.,\
268 com.sun.org.apache.xml.internal.serializer.utils.,\
269 com.sun.org.apache.xml.internal.utils.,\
270 com.sun.org.glassfish.,\
271 com.oracle.xmlns.internal.,\
272 com.oracle.webservices.internal.,\
273 org.jcp.xml.dsig.internal.,\
274 jdk.internal.,\
275 jdk.nashorn.internal.,\
276 jdk.nashorn.tools.,\
277 com.sun.activation.registries.,\
278 #ifdef macosx
279 apple.,\
280 #endif
281
282 #
283 # Determines whether this properties file can be appended to
284 # or overridden on the command line via -Djava.security.properties
285 #
286 security.overridePropertiesFile=true
287
288 #
289 # Determines the default key and trust manager factory algorithms for
290 # the javax.net.ssl package.
291 #
292 ssl.KeyManagerFactory.algorithm=SunX509
293 ssl.TrustManagerFactory.algorithm=PKIX
294
295 #
296 # The Java-level namelookup cache policy for successful lookups:
297 #
298 # any negative value: caching forever
299 # any positive value: the number of seconds to cache an address for
300 # zero: do not cache
|