JDK-8227917 : Release Note: Weak Encryption Disabled by Default
- Type: Sub-task
- Component: security-libs
- Affected Version: 7u231,8
- Priority: P4
- Status: Closed
- Resolution: Delivered
- Submitted: 2019-07-17
- Updated: 2019-07-18
- Resolved: 2019-07-17
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
| JDK 7 | JDK 8 |
|---|---|
| 7u231Resolved | 8Resolved  |
Description
The DES-related Kerberos 5 encryption types are not supported by default. These encryption types can be enabled by adding `allow_weak_crypto=true` in the `krb5.conf` file, but DES-related encryption types are considered highly insecure and should be avoided.