https://bugs.exim.org/show_bug.cgi?id=1902
--- Comment #1 from Phil Pennock <p...@exim.org> --- The older standards primes are subject to precomputation-aided attacks. The whole point of the ones in the appendix of RFC 7919 is that they're "nothing up my sleeve" values, intended to not be subject to precomputation-aid. If they are, that's a major cryptanalytic breakthrough in which case all bets are off. -- You are receiving this mail because: You are on the CC list for the bug. -- ## List details at https://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##