[Dovecot] DH parameter length too small?
Jörg Lübbert
j.luebbert at kaladix.org
Mon Oct 14 19:08:54 EEST 2013
Hello,
from my understanding, using 1024bit DH parameters results in a not
sufficiently secure key exchange for DH(E). Therefore I think it would
be advisable to have parameters of at least 2048bit . In fact, I would
see a great benefit in chosing parameter length arbitrarily.
I also do not see the benefit of parameter regeneration. What were the
design goals here?
Thanks,
Jörg Lübbert
More information about the dovecot
mailing list