Fix Java error Unsigned application requesting unrestricted access to system

Tried to login to one of my server that requires Java and immediately got this error:

Unsigned application requesting unrestricted access to system. The following resource is signed with a weak signature algorithm MD5withRSA and is treated as unsigned

After some research on Google I found that the root cause was JAR files signed with MD5 algorithms. Apparently Java/Oracle decided to play smart suddenly and now they are treating JAR files signed with keySize less than <1024 as unsigned JARs. Read more here.

Fixing Unsigned application requesting

You can fix this by simply commening out jdk.jar.disabledAlgorithms in the file of lib/security/java.security

  1. In my Windows it’s located at:
    C:\Program Files (x86)\Java\jre7\lib\security\java.security
  2. In MacOS it’s located at
    /Library/Internet Plug-Ins/JavaAppletPlugin.plugin/Contents/Home/lib/security/java.security
  3. In Linux? – readers please comment below

Fix Java error Unsigned application requesting unrestricted access to system - blackMORE Ops

I simply edited the file and added a hash # in front of the line below, save and run the JNLP File again and it worked.

# jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024

In some cases you may need to clear browser cache and Java Temporary files. Browser cache is normal, just delete everything including history form the beginning of time, all cookies, downloaded applications etc. For Java Temporary files do it from Control Panel > Java >

Now you can argue if this is a secured? Duh, no … but when you’re about to make a change and there no alternative, then this is a quick a dirty fix. An alternative might be changing it to <128 Keysize or whichever instead of commenting it out. Use your judgement i.e.

jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 128

 

5 comments

  1. awesome! Fixed my issue after adding the IPs to the exception list failed.

  2. Thank you, thank you, thank you! Finally able to get into my Cisco ASA 5505 ASDM again!

  3. I have the cisco 5510, using asdm 6.3.(1) and this fix worked thank you!

  4. It did not work if I put “jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 128”, but it did work when I commented the whole line out.

Leave a Reply

Your email address will not be published. Required fields are marked *