[英]How to enable SSL 3 in Java
如果您必須在8u31,7u75,6u91上重新啟用SSLv3.0,您只需在JRE_HOME / lib / security / java.security中注釋掉以下行:
jdk.tls.disabledAlgorithms=SSLv3
碼:
import javax.net.ssl.*;
public class SocketProtocols {
public static void main(String[] args) throws Exception {
SSLSocketFactory factory = (SSLSocketFactory) SSLSocketFactory.getDefault();
SSLSocket soc = (SSLSocket) factory.createSocket();
// Returns the names of the protocol versions which are
// currently enabled for use on this connection.
String[] protocols = soc.getEnabledProtocols();
System.out.println("Enabled protocols:");
for (String s : protocols) {
System.out.println(s);
}
}
}
輸出:
在啟用SSL 3.0之前
$ /jdk1.8.0_31/bin/java SocketProtocols
Enabled protocols:
TLSv1
TLSv1.1
TLSv1.2
啟用SSL 3.0后
$ /jdk1.8.0_31/bin/java SocketProtocols
Enabled protocols:
SSLv3
TLSv1
TLSv1.1
TLSv1.2
學分/來源: http : //javablogx.blogspot.de/2015/02/enabling-ssl-v30-in-java-8.html
您可以在運行時設置jdk.tls.disabledAlgorithms
安全屬性,如下所示。
static {
Security.setProperty("jdk.tls.disabledAlgorithms", "");
}
我發現連接到DRAC 5卡需要進行這兩種編輯:
刪除MD5:
jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024
刪除SSLv3,RC4和MD5withRSA:
jdk.tls.disabledAlgorithms=DH keySize < 768
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.