Martin Schütte wrote: > I think this is mainly a compatibility concern for users who have > existing PKIX certificates with RSA keys and want to use them for > TLS and for signing. When creating new keys for syslog-sign then > DSA or ECDSA are clearly preferable.
Or existing *CAs* (inside enterprises etc.) that certify only RSA keys (not because there's anything wrong with DSA, but because they thought nobody would need it). Best regards, Pasi _______________________________________________ Syslog mailing list [email protected] https://www.ietf.org/mailman/listinfo/syslog
