[Operators] Please enable Forward Secrecy for your servers!

Bandie Kojote bandie at ttygap.net
Mon Jul 20 22:19:03 UTC 2015


On Monday 20 July 2015 23:10:21 David Banes wrote:
> On 20 Jul 2015, at 23:07, Peter Kieser <peter at kieser.ca> wrote:
> > On 2015-07-10 2:47 AM, Mathias Ertl wrote:
> >> * Have a valid 4096 bit certificate with at least a sha256 signature.
> > 
> > 4096 bit seems a bit excessive. NIST is still recommending 2048 bit from
> > 2011 to 2030.
> > 
> > -Peter
> 
> I laughed....
I laughed twice!


-- 
Bandie Kojote

Encrypted and signed messages are welcome.
GPG: 0x0607E094
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 213 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.jabber.org/pipermail/operators/attachments/20150721/4858afe0/attachment.sig>


More information about the Operators mailing list