> For a given computational effort, you get the most bang-for-the-buck by
> choosing large parameters (and checking very carefully that they are
> "safe") rather than smaller parameters (and/or checking them less
> carefully) which you then regenerate.
This discussion (on the OpenSSH mailing list)
http://marc.info/?t=143221614200001
may be helpful to those thinking about this.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 203 bytes
Desc: Message signed with OpenPGP using GPGMail
URL:
<http://dovecot.org/pipermail/dovecot/attachments/20150527/2f171605/attachment.sig>