JDK-8227917 : Release Note: Weak Encryption Disabled by Default
  • Type: Sub-task
  • Component: security-libs
  • Affected Version: 7u231,8
  • Priority: P4
  • Status: Closed
  • Resolution: Delivered
  • Submitted: 2019-07-17
  • Updated: 2019-07-18
  • Resolved: 2019-07-17
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 7 JDK 8
7u231Resolved 8Resolved
Description
The DES-related Kerberos 5 encryption types are not supported by default. These encryption types can be enabled by adding `allow_weak_crypto=true` in the `krb5.conf` file, but DES-related encryption types are considered highly insecure and should be avoided.