Re: [exim] REPOST: Possible TLS weakness in Exim? (to be not…

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
M+\Hill Ruyter at <-
MMMRalf G. R. Bergs at ->
Delete this message
Reply to this message
Author: Florian Weimer
Date:  
To: exim-users
CC: Ralf G. R. Bergs
Subject: Re: [exim] REPOST: Possible TLS weakness in Exim? (to be noticed with Opera and Exim 4.50 from Debian stable)
* Philip Hazel:

> I am not a cryptographer. If certain experts (NIST, BSI) recommend
> larger numbers than the current 768 (which came with the contributed
> code, I suppose), then I am happy to change the number without regard to
> the PR aspects. Unless somebody tells me not to, I am about to change it
> to 1024 for the next release.

1024 is as good as any other value in that range, and should also make
those Opera users happy. 1024 is also used in the GnuTLS example
code, which means that we can be quite sure that it works well
(i.e. that it does not hit some limits within the GnuTLS library).


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] REPOST: Possible TLS weakness in Exim? (to be noticed with Opera and Exim 4.50 from Debian stable)Re: [exim] Manual router->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)