486 # protocol version negotiation, cipher suites selection, peer authentication
487 # and key exchange mechanisms.
488 #
489 # Disabled algorithms will not be negotiated for SSL/TLS connections, even
490 # if they are enabled explicitly in an application.
491 #
492 # For PKI-based peer authentication and key exchange mechanisms, this list
493 # of disabled algorithms will also be checked during certification path
494 # building and validation, including algorithms used in certificates, as
495 # well as revocation information such as CRLs and signed OCSP Responses.
496 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
497 #
498 # See the specification of "jdk.certpath.disabledAlgorithms" for the
499 # syntax of the disabled algorithm string.
500 #
501 # Note: This property is currently used by Oracle's JSSE implementation.
502 # It is not guaranteed to be examined and used by other implementations.
503 #
504 # Example:
505 # jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
506 jdk.tls.disabledAlgorithms=SSLv3
|
486 # protocol version negotiation, cipher suites selection, peer authentication
487 # and key exchange mechanisms.
488 #
489 # Disabled algorithms will not be negotiated for SSL/TLS connections, even
490 # if they are enabled explicitly in an application.
491 #
492 # For PKI-based peer authentication and key exchange mechanisms, this list
493 # of disabled algorithms will also be checked during certification path
494 # building and validation, including algorithms used in certificates, as
495 # well as revocation information such as CRLs and signed OCSP Responses.
496 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
497 #
498 # See the specification of "jdk.certpath.disabledAlgorithms" for the
499 # syntax of the disabled algorithm string.
500 #
501 # Note: This property is currently used by Oracle's JSSE implementation.
502 # It is not guaranteed to be examined and used by other implementations.
503 #
504 # Example:
505 # jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
506 jdk.tls.disabledAlgorithms=SSLv3, RC4
|