FREAK/Logjam, and SSL protocols to use

Jacques Distler distler at
Wed May 27 19:06:15 UTC 2015

> For a given computational effort, you get the most bang-for-the-buck by
> choosing large parameters (and checking very carefully that they are
> "safe") rather than smaller parameters (and/or checking them less
> carefully) which you then regenerate.

This discussion (on the OpenSSH mailing list)

may be helpful to those thinking about this.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 203 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <>

More information about the dovecot mailing list