Re: [openssl.org #2626] ENHANCEMENT: please update default_bits to 2048 in default openssl.cnf

Duplicate of ticket #2354. On Wednesday 19 Oct 2011 16:58:28 Daniel Kahn Gillmor via RT wrote: The current default openssl.cnf appears to have default_bits = 1024: http://cvs.openssl.org/fileview?f=openssl/apps/openssl.cnfv=1.23.4.6 however, NIST has recommended avoiding reliance on

[openssl.org #2626] ENHANCEMENT: please update default_bits to 2048 in default openssl.cnf

The current default openssl.cnf appears to have default_bits = 1024: http://cvs.openssl.org/fileview?f=openssl/apps/openssl.cnfv=1.23.4.6 however, NIST has recommended avoiding reliance on 1024-bit RSA keys after 2010. See pages 63-66 of: