On Thu, 3 Nov 2022 14:59:59 GMT, Sean Mullan <mul...@openjdk.org> wrote:
> This change will disable TLS_ECDH_* cipher suites by default. These cipher > suites do not preserve forward secrecy and are rarely used in practice. See > the CSR for more details and rationale. > > Users will still be able to enable the suites (at their own risk) by removing > "ECDH" from the `jdk.tls.disabledAlgorithms` security property. This pull request has now been integrated. Changeset: 00d22f60 Author: Sean Mullan <mul...@openjdk.org> URL: https://git.openjdk.org/jdk/commit/00d22f605d2b54f2774aeaa1edfbb146a5635f21 Stats: 108 lines in 4 files changed: 14 ins; 63 del; 31 mod 8279164: Disable TLS_ECDH_* cipher suites Reviewed-by: xuelei, rhalade, wetmore ------------- PR: https://git.openjdk.org/jdk/pull/10969
