on 05-14-2018 8:06 AM
Hi,
The problem you face know is because Oracle added MD5withRSA to the list of disabledAlgorithms. This is documented on Oracle's website as Java is their product: http://www.oracle.com/technetwork/java/javase/8u131-relnotes-3565278.html
The list of disabled algorithms is controlled via the security property, jdk.jar.disabledAlgorithms, in the java.security file. This property contains a list of disabled algorithms and key sizes for cryptographically signed JAR files. You can remove the MD5withRSA from the mentioned file and then you will not get the errors. This requires no update or upgrade.
Best regards,
Mate
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I did find the Java security file and opened with Word Pad and I can See MD5 .
What changes should i Make to the file could you please help here.
below are lines I pasted where I found MD5 in the file
--------------------------------------------------------------------------------------------------------
jdk.certpath.disabledAlgorithms=MD2, MD5, SHA1 jdkCA & usage TLSServer, \
RSA keySize < 1024, DSA keySize < 1024, EC keySize < 224
--------------------------------------------------------------------------------------------------------------
jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024
--------------------------------------------------------------------------------------------------------------------
# Example:
# jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048 jdk.tls.disabledAlgorithms=SSLv3, RC4, MD5withRSA, DH keySize < 768, \
EC keySize < 224
----------------------------------------------------------------------------------------------------------------
# Example:
# jdk.tls.legacyAlgorithms=DH_anon, DES_CBC,SSL_RSA_WITH_RC4_128_MD5
jdk.xml.dsig.secureValidationPolicy=\
disallowAlg http://www.w3.org/TR/1999/REC-xslt-19991116,\
disallowAlg http://www.w3.org/2001/04/xmldsig-more#rsa-md5,\
disallowAlg http://www.w3.org/2001/04/xmldsig-more#hmac-md5,\
disallowAlg http://www.w3.org/2001/04/xmldsig-more#md5,\
maxTransforms 5,\
maxReferences 30,\
disallowReferenceUriSchemes file http https,\
minKeySize RSA 1024,\
minKeySize DSA 1024,\
noDuplicateIds,\
noRetrievalMethodLoops
--------------------------------------------------------------------------------------------------
Can you please help here what changes I should make so that I dont get error ?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi,
please check my earlier reply. The list of disabled algorithms is controlled via the security property, jdk.jar.disabledAlgorithms, in the java.security file. This property contains a list of disabled algorithms and key sizes for cryptographically signed JAR files. You can remove the MD5 from the mentioned file and then you will not get the errors. The line should look like this:
jdk.jar.disabledAlgorithms=MD2, RSA keySize < 1024
Best regards,
Mate
User | Count |
---|---|
87 | |
10 | |
10 | |
10 | |
7 | |
6 | |
6 | |
5 | |
5 | |
4 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.