|
From: | Simon Josefsson |
Subject: | [gnutls-dev] Re: Feature request: not really random session keys |
Date: | Mon, 30 Jan 2006 16:30:25 +0100 |
User-agent: | Gnus/5.110004 (No Gnus v0.4) Emacs/22.0.50 (gnu/linux) |
Florian Weimer <address@hidden> writes: > I tracked this down to the generation of the RSA_EXPORT key. In this > case, bits from /dev/random are used, even though the generated key is > horribly insecure anyway. > > Wouldn't it make sense to use only STRONG_RANDOM in this case, and not > VERY_STRONG_RANDOM? Perhaps. But doesn't this happen for non-RSA_EXPORT keys too? We wouldn't want to make that change there. It seems better to fix Exim here.
[Prev in Thread] | Current Thread | [Next in Thread] |