如何在Java中启用SSL 3 [英] How to enable SSL 3 in Java

问题描述

自Java 8 Update 31起，由于SSL协议存在安全漏洞，默认情况下禁用SSL 3协议（请参阅 POODLE attack ）。

Since Java 8 Update 31 the SSL 3 protocol is disabled by default due to security flaws in the SSL Protocol (see POODLE attack).

即使不推荐，如何启用？

Even if not recommended, how can it be enabled?

推荐答案

除非您使用SSL 3别无选择，否则下面的链接将说明配置。

Unless you have no choice other than using SSL 3, the link below explains the configuration.

更新发布说明31 提供了有关在Java中再次启用SSL 3的信息。

The release notes for the update 31 provide information for enabling the SSL 3 again in Java.

如上所述：

如果SSLv3 绝对需要，可以通过
从
java.security文件中的jdk.tls.disabledAlgorithms属性中删除SSLv3，或者通过在JSSE之前将此Security属性动态设置为
true来重新激活协议。初始化。

If SSLv3 is absolutely required, the protocol can be reactivated by removing "SSLv3" from the jdk.tls.disabledAlgorithms property in the java.security file or by dynamically setting this Security property to "true" before JSSE is initialized.

K.请记住，甚至可以利用TLS协议来允许使用SSL 3进行不安全的访问，这也是POODLE漏洞的一部分。只有出于严峻的原因，为Java或任何其他技术启用此功能应该是最后的手段。

Keep in mind that even the TLS protocol can be exploited to allow an insecure access with SSL 3, thats also part of the POODLE flaw. Enabling this for Java or any other technology should be a last resort only for critical reasons.

这篇关于如何在Java中启用SSL 3的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！