RFR: 8139348: Deprecate 3DES and RC4 in Kerberos

Weijun Wang weijun at openjdk.java.net
Wed Feb 24 21:46:40 UTC 2021


On Wed, 24 Feb 2021 21:33:33 GMT, Sean Mullan <mullan at openjdk.org> wrote:

> Is there a test that checks that the weak algorithms are actually disabled? I wasn't sure if I saw anything or maybe that is another test that you didn't have to modify?

Actually there's no. I can add all weak etypes into `onlythree.conf` and they should be ignored.

-------------

PR: https://git.openjdk.java.net/jdk/pull/2701



More information about the security-dev mailing list