Dear anonymous crypto-expert,
On Sun, Apr 13, 2008 at 01:58:46PM +0200, Tom Kistner wrote:
It's also not very important that the D-H parameters be changed often;
So there still is some value in changing them?
while changing them N times makes it N times as much work for an attacker
Dear anonymous Crypto-Expert,
There appears to be a fundamental misapprehension about the role of
Diffie-Hellman parameters. Section 39.3 conflates them with the the
RSA secret key, which is actual secret key material and should not be
called a parameter. The D-H parameters are not key
I assume you're referring to the recommendations in section 39.3 of
spec.txt? That places (really secret) RSA key material in the same file.
Which nicely explains the otherwise perplexing permission bits.
But can you briefly explain the purpose of the RSA secret key there, and
why it is not
Marc Haber [EMAIL PROTECTED] wrote:
On Wed, Apr 09, 2008 at 10:34:00AM -0400, [EMAIL PROTECTED] wrote:
The entire premise of the script /usr/share/exim4/exim4_refresh_gnutls-params
is based on a serious misapprehension of the role of Diffie-Hellman
parmeters in performing encryption.
It is,
I recently administered a stiff flaming to the Debian package maintainers
for exim4, and was rebuffed with the observation that the behaviour I was
complaing about was recommended by the exim specification, section 39.3.
Marc Haber [EMAIL PROTECTED] wrote:
On Wed, Apr 09, 2008 at 10:34:00AM
On Thu, 10 Apr 2008, [EMAIL PROTECTED] wrote:
I recently administered a stiff flaming to the Debian package maintainers
for exim4, and was rebuffed with the observation that the behaviour I was
complaing about was recommended by the exim specification, section 39.3.
From the headers of your
I recently administered a stiff flaming to the Debian package maintainers
for exim4, and was rebuffed with the observation that the behaviour I was
complaing about was recommended by the exim specification, section 39.3.
Some of the original flame:
Marc Haber [EMAIL PROTECTED] wrote:
On Wed,
Package: exim4-base
Version: 4.69-2
The entire premise of the script /usr/share/exim4/exim4_refresh_gnutls-params
is based on a serious misapprehension of the role of Diffie-Hellman
parmeters in performing encryption.
Parameters are values that the communicating parties must agree on,
but they
I wish I could come up with a polite way to put this, but the entire
thing smells strongly of cluon deficiency.
You could have come up with a polite way to put this.
There is always a polite way to tell things and when people don't tell
things the polite way, this is generally because they
On Wed, Apr 09, 2008 at 10:34:00AM -0400, [EMAIL PROTECTED] wrote:
The entire premise of the script /usr/share/exim4/exim4_refresh_gnutls-params
is based on a serious misapprehension of the role of Diffie-Hellman
parmeters in performing encryption.
It is, however, in accordance with upstream's
10 matches
Mail list logo
