src/share/lib/security/java.security-macosx

Print this page 







 486 # protocol version negotiation, cipher suites selection, peer authentication
 487 # and key exchange mechanisms.
 488 #
 489 # Disabled algorithms will not be negotiated for SSL/TLS connections, even
 490 # if they are enabled explicitly in an application.
 491 #
 492 # For PKI-based peer authentication and key exchange mechanisms, this list
 493 # of disabled algorithms will also be checked during certification path
 494 # building and validation, including algorithms used in certificates, as
 495 # well as revocation information such as CRLs and signed OCSP Responses.
 496 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
 497 #
 498 # See the specification of "jdk.certpath.disabledAlgorithms" for the
 499 # syntax of the disabled algorithm string.
 500 #
 501 # Note: This property is currently used by Oracle's JSSE implementation.
 502 # It is not guaranteed to be examined and used by other implementations.
 503 #
 504 # Example:
 505 #   jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
 506 jdk.tls.disabledAlgorithms=SSLv3



 486 # protocol version negotiation, cipher suites selection, peer authentication
 487 # and key exchange mechanisms.
 488 #
 489 # Disabled algorithms will not be negotiated for SSL/TLS connections, even
 490 # if they are enabled explicitly in an application.
 491 #
 492 # For PKI-based peer authentication and key exchange mechanisms, this list
 493 # of disabled algorithms will also be checked during certification path
 494 # building and validation, including algorithms used in certificates, as
 495 # well as revocation information such as CRLs and signed OCSP Responses.
 496 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
 497 #
 498 # See the specification of "jdk.certpath.disabledAlgorithms" for the
 499 # syntax of the disabled algorithm string.
 500 #
 501 # Note: This property is currently used by Oracle's JSSE implementation.
 502 # It is not guaranteed to be examined and used by other implementations.
 503 #
 504 # Example:
 505 #   jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
 506 jdk.tls.disabledAlgorithms=SSLv3, RC4