On 08/06/2012 02:44 PM, Phil Daws wrote: > Hello all, > > looking for a bit of advice as searches have not really reaped much. When we > set up Djigzo's CA what would be the most client inter-operable settings to > use; 2048 bits with SHA512 ? I have been led to believe that there have been > issues on BlackBerrys, quite some time ago, when using 4096 bits and SHA512. >
I think the current best practice is to use 4096 with sha256 for the root and intermediate(s) and 2048 with sha256 for end user certificates. Kind regards, Martijn -- DJIGZO email encryption _______________________________________________ Users mailing list [email protected] http://lists.djigzo.com/lists/listinfo/users
