Re: [exim] TLS / Entropy

Αρχική Σελίδα
Delete this message
Reply to this message
Συντάκτης: Florian Weimer
Ημερομηνία:  
Προς: exim-users
Αντικείμενο: Re: [exim] TLS / Entropy
* Sander Smeenk:

> How does the rest of the world create all the entropy on their
> servers?


They don't provide Perfect Forwarding Secrecy, so they don't need
cryptographically strong random numbers. I think using PFS is a
mistake in this context (because it's too costly, as you've noted),
but the last time this has come up on debian-devel, the consensus was
that PFS is important to warrant this inconvenience.