The name of the control panel is different depending on whether you are using the Oracle JDK or OpenJDK.

Search for "control panel" in the dash. If you're using the Oracle JDK, you'll see the Oracle Java 7 Plugin Control Panel. If you're using OpenJDK, you'll see the Iced Tea Web Control Panel.

Answer from David Edwards on askubuntu.com
🌐
Mkyong
mkyong.com › home › java › where is the java.security file?
Where is the java.security file? - Mkyong.com
July 1, 2020 - For Java 11 and Java 14, we can find the java.security file at $JAVA_HOME/conf/security.
Discussions

update to java.security file in linux - Stack Overflow
I need to encrypt the password from client side using java gwt but import java.security is not available More on stackoverflow.com
🌐 stackoverflow.com
Where is java.security file in OpenJDK 9 ?
In version 7 and 8, I used to have to edit a java.security file located “/usr/lib/jvm/java-8-openjdk-amd64/jre/lib/security/java.security” on Debian systems to add the ability to create random data “securerandom.source=file:/dev/./urandom”. However, this path no longer exists in version ... More on community.spiceworks.com
🌐 community.spiceworks.com
2
2
April 11, 2018
linux - Reducing java security settings - Stack Overflow
I have an applet I am trying to run from localhost. However, I just updated the java client and now java blocks the applet from running because it is self-signed. This is apparently a new security ... More on stackoverflow.com
🌐 stackoverflow.com
May 25, 2017
solaris - How do I change the Java Security level? - Unix & Linux Stack Exchange
We've got an ancient (internal use only) self-signed app that refuses to run now with the changes to the JRE. Working on getting a code signing certificate and rebuilding it, but that's horribly s... More on unix.stackexchange.com
🌐 unix.stackexchange.com
January 28, 2014
🌐
Redbranch
blog.redbranch.net › 2015 › 06 › 02 › configure-java-security-settings-on-linux
Configure Java Security Settings on Linux » Red Branch
June 2, 2015 - However, you should be able to track down the location of your version of Java by typing the following into a terminal: ... After running the Control Panel choose the ‘Security’ tab and set the ‘Security Level’ to ‘Medium’ (don’t forget to set it back to high when you are finished.)
🌐
Stack Overflow
stackoverflow.com › questions › 75918555 › update-to-java-security-file-in-linux
update to java.security file in linux - Stack Overflow
We have a parameter in java.security, i.e., jdk.tls.disabledalgorithms =RSA KeySize < 1024 , this parameter won't allow application to use RSA ciphers having keysize less tahn 1024 . I run my application using java. for example: java application.exe I can see still the application is using old ciphers(i.e., RSA ciphers with keysize less than 1024).
🌐
GitHub
github.com › frohoff › jdk8u-jdk › blob › master › src › share › lib › security › java.security-linux
jdk8u-jdk/src/share/lib/security/java.security-linux at master · frohoff/jdk8u-jdk
# In this file, various security properties are set for use by · # java.security classes. This is where users can statically register · # Cryptography Package Providers ("providers" for short). The term · # "provider" refers to a package or set of packages that supply a ·
Author   frohoff
🌐
GitHub
github.com › bpupadhyaya › openjdk-8 › blob › master › jdk › src › share › lib › security › java.security-linux
openjdk-8/jdk/src/share/lib/security/java.security-linux at master · bpupadhyaya/openjdk-8
# In this file, various security properties are set for use by · # java.security classes. This is where users can statically register · # Cryptography Package Providers ("providers" for short). The term · # "provider" refers to a package or set of packages that supply a ·
Author   bpupadhyaya
🌐
IBM
ibm.com › docs › en › linux-on-systems
Set up the java.security file for software encryption
This file is an example of the java.security file for Java Version 5.0. The java.security file is located on both the JSSE server and JSSE client LPARs, and must be tailored on both LPARs.
Find elsewhere
🌐
Oracle
docs.oracle.com › en › java › javase › 11 › security › java-security-overview1.html
Java Security Overview
March 27, 2026 - The JDK is designed with a strong emphasis on security. At its core, the Java language itself is type-safe and provides automatic garbage collection, enhancing the robustness of application code. A secure class loading and verification mechanism ensures that only legitimate Java code is executed.
🌐
Stack Overflow
stackoverflow.com › questions › 21539712 › reducing-java-security-settings
linux - Reducing java security settings - Stack Overflow
May 25, 2017 - My work-a-day laptop runs Neptune Linux. This is what has finally worked for me. YMMV. My solution is this (3 May 2023), I finally found the file. NO answer anywhere on the internet was found over years on and off of searching: cd /home/~/.java/deployment/security nano exception.sites
🌐
Oracle
docs.oracle.com › javase › 8 › docs › technotes › guides › deploy › client-security.html
23 Setting the Security Level of the Java Client
April 21, 2026 - Certificates and keys in Mozilla are recognized by Java Plug-in and Java Web Start when Java and JavaFX applications are deployed on Linux and Solaris. Support for Mozilla keystore requires a Mozilla library called JSS (Network Security Services for Java). By default, JSS is a separate component ...
🌐
Oracle
docs.oracle.com › javase › 7 › docs › technotes › tools › linux › jdkfiles.html
JDK File Structure for Linux
localedata.jar -- locale data for java.text and java.util. ... Contains files used for security management.
🌐
Ubuntu
documentation.ubuntu.com › server › explanation › crypto › java-cryptography-configuration
Java cryptography configuration - Ubuntu Server documentation
January 23, 2026 - If your output shows version 21, for example, your configuration directory will be /etc/java-21-openjdk/. In that directory, the file that defines Java security settings, including cryptographic algorithms restrictions, is located at /etc/java-<VERSION>-openjdk/security/java.security.
🌐
Sios
docs.us.sios.com › Linux › 7.5 › LK4L › TechDoc › Content › user_guide › using_lifekeeper_linux › gui › preparing_run_gui › java_security_policy.htm
Java Security Policy
You are here: User Guide > Using LifeKeeper Linux > GUI > Java Security Policy · The LifeKeeper GUI uses policy-based access control. When the GUI client is loaded, it is assigned permissions based on the security policy currently in effect. The policy, which specifies permissions that are available for code from various signers/locations, is initialized from an externally configurable policy file.
Top answer
1 of 1
1

Yes the comment character is # on all systems. The webpage you link is about security policy files, for the SecurityManager (originally designed for applets and now little-used); java.security is not a security policy file.

Yes do all 3 lines. The continuation syntax (backslash-eol) only works on uncommented lines, so to comment an item continued over multiple (physical) lines, comment each line.

However, since you now make clear the error is on the protocols, it would be safer to only delete the offending protcol(s) (almost certainly TLSv1(.0) and/or TLSv1.1 -- SSLv3 has been disabled since 8u31 in 2015 after it was catastrophically broken by POODLE) and leave the rest.

Are you by chance trying to use an old version of javamail? There was a (mis)feature for a while which defaulted secure mode to TLSv1(.0) (only) and triggered this symptom when 8u291 and several other versions came out; we have several existing Qs about it, just search "javamail no appropriate protocol". While removing or reducing the disabledAlgorithms setting (or regressing below 8u291) will allow the client to attempt a TLS1.0 connection, many servers today will not accept it because TLS1.0 is considered broken; that's why Java is now changed to disable it by default. In this case it would be better to upgrade javamail or to explicitly configure mail.{smtp,imap,pop3}.ssl.protocols to a value suitable today probably TLSv1.2,TLSv1.3.

(Other) Alternatives: in general instead of changing things in JRE/lib/security/java.security which affects all JVMs, you can set system property java.security.properties to point to a different (modified) file separately for each/any JVM e.g. with -D on commandline, or you can call Security.setProperty() in your code sufficiently near the beginning.

🌐
Oracle
docs.oracle.com › javase › 7 › docs › technotes › guides › security › PolicyFiles.html
Default Policy Implementation and Policy File Syntax
java.home/lib/security/java.security (Solaris/Linux) java.home\lib\security\java.security (Windows) As noted above, java.home indicates the directory that houses the runtime environment--either the jre directory in the JDK or the top-level directory of the JRE.
🌐
GitHub
github.com › srisatish › openjdk › blob › master › jdk › src › share › lib › security › java.security
openjdk/jdk/src/share/lib/security/java.security at master · srisatish/openjdk
# the securerandom.source property. If an exception occurs when · # accessing the URL then the traditional system/thread activity · # algorithm is used. · # # On Solaris and Linux systems, if file:/dev/urandom is specified and it · # exists, a special SecureRandom implementation is activated by default.
Author   srisatish
🌐
DZone
dzone.com › coding › java › how to override java security configuration per jvm instance
How to Override Java Security Configuration per JVM Instance
December 3, 2012 - As an important configuration option as it is we must not forget its security implications. We should always make sure that no one can tamper the value of the property and that no one can tamper the alternate file content if he shouldn't be allowed to. Java (programming language) Java virtual machine security
🌐
ColinPaice
colinpaice.blog › 2023 › 08 › 03 › how-to-change-the-java-security-file-on-a-read-only-file-system
How to change the java.security file on a read only file system. – ColinPaice
August 3, 2023 - This is the system wide default definition file for Java. Unfortunately this is on a read only file system. I had the choice of changing this file – not a good idea or overriding it. In the file, there are comments about overriding the file · -Djava.security.properties=url (one equals), to append to the system java.security file