Virtual Architects Support Wiki

User Tools

Site Tools

You are here: start » computing » java_security
Trace: msp_rmm_templates hyper-v-usb files_not_visible branchcache hyper-v-nic smeserver_l1_backup freepbx_firewall java_security
computing:java_security

This is an old revision of the document!

Java Security Tweaks

Algorithm constraints check failed: MD5withRSA

Newer versions of Java require an SSL key length of at least 1024, however older apps may not provide that long of a key.

  • Supermicro IPMI KVM

Here, we edit $JAVA_HOME/jre/lib/security/java.security to reduce the requirement to 512.

Change 1024 to 512, 256 or 128 as necessary to cover the SSL cert being presented: 

jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024

to 

jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 512

Another suggestion: 

#jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024
jdk.certpath.disabledAlgorithms=MD2

#jdk.tls.disabledAlgorithms=SSLv3, RC4, MD5withRSA, DH keySize < 768
jdk.tls.disabledAlgorithms=SSLv3, RC4
computing/java_security.1478033894.txt.gz · Last modified: 2016/11/01 14:58 by gcooper

Page Tools

Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki