Hello, On Wed, 6 May 2020 at 20:25, William Lallemand <wlallem...@haproxy.com> wrote: > > As such I think it's about time we change the default value to 2048 and > > get rid of this annoying warning before 2.2 gets released (and at the > > same time 86% of the users will be able to remove one cryptic line in > > their config). This way those who don't know/need it will be more > > secure by default and those who need it will still be able to. > > > > Does anyone have any objection or alternate recommendation ? > > > > Thanks, > > Willy > > > I'm fine with that, most people use at least a value of 2048 because of > the warning, their modern distribution will probably deny a lower value, > and we add this warning a long time ago.
I agree, we should default to 2048 and remove warnings. Lukas