Re: [exim-dev] Remove RSA_EXPORT support

Página superior
Eliminar este mensaje
Responder a este mensaje
Autor: Florian Weimer
Fecha:  
A: exim-dev
Cc: Marc Haber
Asunto: Re: [exim-dev] Remove RSA_EXPORT support
* Philip Hazel:

> At a quick look, it seems to remove *all* RSA support, just leaving the
> D-H support. Is that correct? Surely we want Exim to support both RSA
> encryption and D-H encryption? Or have I missed something here?


The new key exchange algorithm list is:

static const int kx_priority[16] = {
GNUTLS_KX_RSA,
GNUTLS_KX_DHE_DSS,
GNUTLS_KX_DHE_RSA,
0 };

So RSA is still available (and it's still used according to my server
logs).