Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Fixed
Priority: P4
Fix Version/s: 8
Affects Version/s: 8
Component/s: security-libs
Labels:

Subcomponent:
org.ietf.jgss:krb5
Resolved In Build:
b91
Verification:
Verified

Issue	Fix Version	Assignee	Priority	Status	Resolution	Resolved In Build
JDK-8168016	7u241	Sean Coffey	P3	Resolved	Fixed	b01
JDK-8223093	7u231	Sean Coffey	P4	Resolved	Fixed	b03
JDK-8240024	openjdk7u	Weijun Wang	P4	Resolved	Fixed	master

Java supports the krb5.conf allow_weak_crypto setting. When it's true, weak etypes (i.e. DES-related ones) are enabled. The current default value is true. According to RFC 6649, it should be false now.

backported by

JDK-8168016 Let allow_weak_crypto default to false

Resolved

JDK-8223093 Let allow_weak_crypto default to false

Resolved

JDK-8240024 Let allow_weak_crypto default to false

Resolved

relates to

JDK-8014310 JAAS/Krb5LoginModule using des encytypes failure with NPE after JDK-8012679

Closed

JDK-6844909 support allow_weak_crypto in krb5.conf

Resolved

1.	Add doc for 8012679		Closed	Joni Gordon (Inactive)
2.	Release Note: Weak Encryption Disabled by Default		Closed	Clifford Wayne (Inactive)

Assignee:: Weijun Wang

Reporter:: Weijun Wang

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2013-04-19 00:54

Updated:: 2020-02-25 22:02

Resolved:: 2013-05-07 17:30

Details

Backports

Description

Attachments

Issue Links

Sub-Tasks

Activity

People

Dates