How to enable SSL 3 in Java

by

Unless you have no choice other than using SSL 3, the link below explains the configuration.

The release notes for the update 31 provide information for enabling the SSL 3 again in Java.

As stated:

If SSLv3 is absolutely required, the protocol can be reactivated by
removing “SSLv3” from the jdk.tls.disabledAlgorithms property in the
java.security file or by dynamically setting this Security property to
“true” before JSSE is initialized.

Keep in mind that even the TLS protocol can be exploited to allow an insecure access with SSL 3, thats also part of the POODLE flaw. Enabling this for Java or any other technology should be a last resort only for critical reasons.

More Related Contents:

  1. Trusting all certificates using HttpClient over HTTPS
  2. Https Connection Android
  3. How to import an existing X.509 certificate and private key in Java keystore to use in SSL?
  4. Which Cipher Suites to enable for SSL Socket?
  5. How to fix the “java.security.cert.CertificateException: No subject alternative names present” error?
  6. How to handle invalid SSL certificates with Apache HttpClient? [duplicate]
  7. Ignoring SSL certificate in Apache HttpClient 4.3
  8. How to create a BKS (BouncyCastle) format Java Keystore that contains a client certificate chain
  9. Registering multiple keystores in JVM [duplicate]
  10. java – path to trustStore – set property doesn’t work?
  11. Using client/server certificates for two way authentication SSL socket on Android
  12. SSL peer shut down incorrectly in Java
  13. How to ignore PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException?
  14. Simple Java HTTPS server
  15. SSLHandshakeException: No subject alternative names present
  16. Disable SSL certificate check in retrofit library
  17. Is it possible to get Java to ignore the “trust store” and just accept whatever SSL certificate it gets?
  18. Is it possible to change plain socket to SSLSocket?
  19. PKIX path building failed in Java application
  20. Enabling specific SSL protocols with Android WebViewClient
  21. How to override the cipherlist sent to the server by Android when using HttpsURLConnection?
  22. Jenkins “unable to find valid certification path to requested target” error while importing Git repository
  23. Generate certificates, public and private keys with Java [closed]
  24. Using HTTPS with REST in Java
  25. javax.net.ssl.SSLException: SSL handshake aborted Connection reset by peer while calling webservice Android
  26. SSLContext initialization
  27. How to make Java 6, which fails SSL connection with “SSL peer shut down incorrectly”, succeed like Java 7?
  28. SNI client-side mystery using Java8
  29. Ignore self-signed ssl cert using Jersey Client [duplicate]
  30. Java HttpsURLConnection and TLS 1.2

Leave a Comment