[Operators] Please enable Forward Secrecy for your servers!

David Banes david at banes.org
Mon Jul 20 22:10:21 UTC 2015


On 20 Jul 2015, at 23:07, Peter Kieser <peter at kieser.ca> wrote:

> On 2015-07-10 2:47 AM, Mathias Ertl wrote:
>> * Have a valid 4096 bit certificate with at least a sha256 signature.
> 
> 4096 bit seems a bit excessive. NIST is still recommending 2048 bit from 2011 to 2030.
> 
> -Peter

I laughed....


Kind Regards,

David.
--
Email: 	david at banes.org
Chat:	dbanes at jabber.org
Web: 	http://davidbanes.com
		http://cleartext.com

Home: 	01494 533266
Mobile: 	0782 5138 214

- Come to Kop Hill Climb, a motoring revival fundraising for local charitable causes - 19th & 20th September 2015


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.jabber.org/pipermail/operators/attachments/20150720/4e798095/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 496 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://mail.jabber.org/pipermail/operators/attachments/20150720/4e798095/attachment.sig>


More information about the Operators mailing list