search for: secadv

...if you're paranoid and you've >> got time to burn, go ahead and generate the "safe" DH key. >> >> [*] https://security.stackexchange.com/questions/42415/openvpn-dhparam) > > Oh, I might have to backtrack on this claim > > https://www.openssl.org/news/secadv/20160128.txt > > although it's beyond my understanding whether it's applicable to Dovecot. > > Joseph Tam <jtam.home at gmail.com> ------------------------------------------------- ONLY AT VFEmail! - Use our Metadata Mitigator to keep your email out of the NSA's h...

On Fri, 22 Jun 2018, Aki Tuomi wrote: >> Do I need to make a fresh dh.pem? The upgrade doc tells how to convert >> ssl-parameters.dat but how to make a new one? > > ... or you can make a fresh one using openssl > gendh 4096 > dh.pem This also works openssl dhparam -out dh.pem 4096 > Note that this will require quite a lot of entropy, so you should > probably

Hi! cc'd to freebsd-security@ as somebody there may correct me, cc'd to secteam@ as maintaner of security/portaudit. On Sun, 28 Aug 2005 10:14:21 +0930 Ian Moore wrote: > I've just updated my acroread port to 7.0.1 & was surprised when portaudit > still listed it as a vulnerability. I think it is portaudit problem. > According to

...is a one time operation, so if you're paranoid and you've > got time to burn, go ahead and generate the "safe" DH key. > > [*] https://security.stackexchange.com/questions/42415/openvpn-dhparam) Oh, I might have to backtrack on this claim https://www.openssl.org/news/secadv/20160128.txt although it's beyond my understanding whether it's applicable to Dovecot. Joseph Tam <jtam.home at gmail.com>