Re[2]: [Exim] OT: TLS encryption strength

Top Page
Delete this message
Reply to this message
Author: Matt Bernstein
Date:  
To: Giuliano Gavazzi
CC: exim-users
Subject: Re[2]: [Exim] OT: TLS encryption strength
At 09:16 -0000 Giuliano Gavazzi wrote:

>I was just concerned about password protection. I hope RC4
>vulnerability still requires a pretty determined person and that the
>tools to break it do not come shrink-wrapped off the shelves.


It should be OK for now. If you want bigger numbers, OpenSSL and the
Mozilla 1.3 PSM both offer the AES ciphers. But there's more to the
strength of a cipher than its key length. RC4 and triple-DES both have
maturity on their side (ie they've not been cracked for longer than AES).