Hi Lukas, >> The default value for max-dh-param-size is set to 1024, thus keeping >> the current behavior by default. Setting a higher value (for example >> 2048 with a 2048 bits RSA/DSA server key) allows an easy upgrade >> to stronger ephemeral DH keys (and back if needed). > > > Please note that Sander used 4096bit - which is why he saw huge CPE load. > > Imho we can default max-dh-param-size to 2048bit.
I am afraid upgrading DH key size from 1024 bits to 2048 bits can divide performance by 2 for CPU-bound installations doing mostly DHE key exchanges, based on some quick benchmarks I ran. Of course it depends on the ratio of new SSL/TLS connections using DHE (without resumption) you get, but I think it may too big of an impact to change the default without warnings. -- Rémi Gacogne Aqua Ray SAS au capital de 105.720 Euros RCS Créteil 447 997 099 www.aquaray.fr 14, rue Jules Vanzuppe 94854 IVRY-SUR-SEINE CEDEX (France) Tel : (+33) (0)1 84 04 04 05 Fax : (+33) (0)1 77 65 60 42
signature.asc
Description: OpenPGP digital signature
