On Sun, 11 Apr 2010 23:29:27 -0400
"Dave Thompson" wrote:
> Aside: do you really need this? FIPS 186-3 extended DSA to 2k and 3k,
> but SP 800-57 no longer approves classic DSA for USgovt use at all,
> even in the new sizes, it switches to ECDSA instead.
I probably don't need DSA, I was testin
> From: owner-openssl-us...@openssl.org On Behalf Of Sad Clouds
> Sent: Saturday, 10 April, 2010 10:56
> I'm testing a very simple SSL web server. Everything seems to work OK
> with RSA and DSA 1024-bit keys.
>
> I tried using DSA 2048-bit key and
> Then when I use Firefox to connect to the serv
On Sat, 10 Apr 2010 15:55:38 +0100
Sad Clouds wrote:
> On the server side I set up a callback function for DH parameters:
Could someone explain to me the relationship between DH parameters and
DSA key lengths? For example, with larger keys, do I need to load
larger DH parameters?
___
On Sat, 10 Apr 2010 15:55:38 +0100
Sad Clouds wrote:
> I'm testing a very simple SSL web server. Everything seems to work OK
> with RSA and DSA 1024-bit keys.
>
> I tried using DSA 2048-bit key and now I'm getting errors:
Maybe it's just the Firefox issue, trying 'openssl s_clien ...' results
i