max rsa key length, sym. cipher and digest recommendations ?
Pedro Côrte-Real
pedro at pedrocr.net
Tue Jan 7 15:53:56 CET 2014
On Tue, Jan 7, 2014 at 10:18 AM, Guus Sliepen <guus at tinc-vpn.org> wrote:
> The default values are already pretty good (2048 bits RSA keys, Blowfish-CBC,
> and SHA1).
Isn't SHA1 considered unsafe now and not recommended for new
deployments? I know it's still only weakened and not broken but to
stay on the safe side shouldn't we me migrating away from it?
Pedro
More information about the tinc
mailing list