我正在测试的java应用程序需要一个无限强度的加密策略才能正常运行,我需要一种方法来检查它是否安装在我的机器上。这个页面提供了很多使用java程序进行检查的方法,但是没有在windows机器上本机进行检查的方法。检查是否有无限制的加密有没有一种方法可以在windows机器上检查策略文件,而不必编译一个小java程序并通过批处理文件运行该程序?
5w9g7ksd1#
jar存档可以解压,并且实际的策略文件是文本可读的,因此您可以评估实际的策略本身(或者与上面推荐的abhishek散列进行比较)。示例(无限制) default_local.policy :
default_local.policy
$ more default_local.policy// Country-specific policy file for countries with no limits on crypto strength.grant { // There is no restriction to any algorithms. permission javax.crypto.CryptoAllPermission;};
$ more default_local.policy
// Country-specific policy file for countries with no limits on crypto strength.
grant {
// There is no restriction to any algorithms.
permission javax.crypto.CryptoAllPermission;
};
示例(受限) default_local.policy :
$ more default_local.policy// Some countries have import limits on crypto strength. This policy file// is worldwide importable.grant { permission javax.crypto.CryptoPermission "DES", 64; permission javax.crypto.CryptoPermission "DESede", *; permission javax.crypto.CryptoPermission "RC2", "javax.crypto.spec.RC2ParameterSpec", 128; permission javax.crypto.CryptoPermission "RC4", 128; permission javax.crypto.CryptoPermission "RC5", 128, "javax.crypto.spec.RC5ParameterSpec", *, 12, *; permission javax.crypto.CryptoPermission "RSA", *; permission javax.crypto.CryptoPermission *, 128;};
// Some countries have import limits on crypto strength. This policy file
// is worldwide importable.
permission javax.crypto.CryptoPermission "DES", 64;
permission javax.crypto.CryptoPermission "DESede", *;
permission javax.crypto.CryptoPermission "RC2", "javax.crypto.spec.RC2ParameterSpec", 128;
permission javax.crypto.CryptoPermission "RC4", 128;
permission javax.crypto.CryptoPermission "RC5", 128,
"javax.crypto.spec.RC5ParameterSpec", *, 12, *;
permission javax.crypto.CryptoPermission "RSA", *;
permission javax.crypto.CryptoPermission *, 128;
出口限制不太可能因为ear规则的现状而改变,所以你只要做一个简单的决定就很安全了 grep 为了 CryptoAllPermission 与。 *, 128; .
grep
CryptoAllPermission
*, 128;
1条答案
按热度按时间5w9g7ksd1#
jar存档可以解压,并且实际的策略文件是文本可读的,因此您可以评估实际的策略本身(或者与上面推荐的abhishek散列进行比较)。
示例(无限制)
default_local.policy
:示例(受限)
default_local.policy
:出口限制不太可能因为ear规则的现状而改变,所以你只要做一个简单的决定就很安全了
grep
为了CryptoAllPermission
与。*, 128;
.