Author: Matt Bernstein Date: To: Giuliano Gavazzi CC: exim-users Subject: Re[2]: [Exim] OT: TLS encryption strength
At 09:16 -0000 Giuliano Gavazzi wrote:
>I was just concerned about password protection. I hope RC4
>vulnerability still requires a pretty determined person and that the
>tools to break it do not come shrink-wrapped off the shelves.
It should be OK for now. If you want bigger numbers, OpenSSL and the
Mozilla 1.3 PSM both offer the AES ciphers. But there's more to the
strength of a cipher than its key length. RC4 and triple-DES both have
maturity on their side (ie they've not been cracked for longer than AES).