Hello, from my understanding, using 1024bit DH parameters results in a not sufficiently secure key exchange for DH(E). Therefore I think it would be advisable to have parameters of at least 2048bit . In fact, I would see a great benefit in chosing parameter length arbitrarily. I also do not see the benefit of parameter regeneration. What were the design goals here? Thanks, J?rg L?bbert
On 14.10.2013, at 19.08, J?rg L?bbert <j.luebbert at kaladix.org> wrote:> from my understanding, using 1024bit DH parameters results in a not sufficiently secure key exchange for DH(E). Therefore I think it would be advisable to have parameters of at least 2048bit . In fact, I would see a great benefit in chosing parameter length arbitrarily. > > I also do not see the benefit of parameter regeneration. What were the design goals here?http://hg.dovecot.org/dovecot-2.2/rev/43ab5abeb8f0