src/share/lib/security/java.security-solaris

Print this page




 485 # protocol version negotiation, cipher suites selection, peer authentication
 486 # and key exchange mechanisms.
 487 #
 488 # Disabled algorithms will not be negotiated for SSL/TLS connections, even
 489 # if they are enabled explicitly in an application.
 490 #
 491 # For PKI-based peer authentication and key exchange mechanisms, this list
 492 # of disabled algorithms will also be checked during certification path
 493 # building and validation, including algorithms used in certificates, as
 494 # well as revocation information such as CRLs and signed OCSP Responses.
 495 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
 496 #
 497 # See the specification of "jdk.certpath.disabledAlgorithms" for the
 498 # syntax of the disabled algorithm string.
 499 #
 500 # Note: This property is currently used by Oracle's JSSE implementation.
 501 # It is not guaranteed to be examined and used by other implementations.
 502 #
 503 # Example:
 504 #   jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
 505 jdk.tls.disabledAlgorithms=SSLv3


 485 # protocol version negotiation, cipher suites selection, peer authentication
 486 # and key exchange mechanisms.
 487 #
 488 # Disabled algorithms will not be negotiated for SSL/TLS connections, even
 489 # if they are enabled explicitly in an application.
 490 #
 491 # For PKI-based peer authentication and key exchange mechanisms, this list
 492 # of disabled algorithms will also be checked during certification path
 493 # building and validation, including algorithms used in certificates, as
 494 # well as revocation information such as CRLs and signed OCSP Responses.
 495 # This is in addition to the jdk.certpath.disabledAlgorithms property above.
 496 #
 497 # See the specification of "jdk.certpath.disabledAlgorithms" for the
 498 # syntax of the disabled algorithm string.
 499 #
 500 # Note: This property is currently used by Oracle's JSSE implementation.
 501 # It is not guaranteed to be examined and used by other implementations.
 502 #
 503 # Example:
 504 #   jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
 505 jdk.tls.disabledAlgorithms=SSLv3, RC4