这些设置实际上在配置文件中。

开放JDK 8

使用 Docker 镜像openjdk:8，当没有安全管理器时，实现使用 30 秒。

/usr/local/openjdk-8/jre/lib/security/java.security：

#
# The Java-level namelookup cache policy for successful lookups:
#
# any negative value: caching forever
# any positive value: the number of seconds to cache an address for
# zero: do not cache
#
# default value is forever (FOREVER). For security reasons, this
# caching is made forever when a security manager is set. When a security
# manager is not set, the default behavior in this implementation
# is to cache for 30 seconds.
#
# NOTE: setting this to anything other than the default value can have
#       serious security implications. Do not set it unless
#       you are sure you are not exposed to DNS spoofing attack.
#
#networkaddress.cache.ttl=-1

开放JDK 11

使用Docker镜像openjdk:11，实现同上。

/usr/local/openjdk-11/conf/security/java.security：

#
# The Java-level namelookup cache policy for successful lookups:
#
# any negative value: caching forever
# any positive value: the number of seconds to cache an address for
# zero: do not cache
#
# default value is forever (FOREVER). For security reasons, this
# caching is made forever when a security manager is set. When a security
# manager is not set, the default behavior in this implementation
# is to cache for 30 seconds.
#
# NOTE: setting this to anything other than the default value can have
#       serious security implications. Do not set it unless
#       you are sure you are not exposed to DNS spoofing attack.
#
#networkaddress.cache.ttl=-1

在其他一些版本中，它可以在 /etc 下，例如/etc/java-11-openjdk/security/java.security

使用 AdoptOpenJDK 11，您可以看到TTL 在没有找到安全管理器时设置为 30 秒。