svn commit: r284436 - head/contrib/sendmail/src
Gregory Shapiro
gshapiro at gshapiro.net
Wed Jun 17 00:26:55 UTC 2015
> > This commit chages that default to 1024 bits. sendmail 8.15.2, when
> > released well use a default of 2048 bits.
>
> If upstream will be using 2048 bits, why not simply use that?
The upstream is going to do this with a precomputed 2048 bit DH parameter. To keep this interim fix simple and not a performance degradation, I went with a run-time generated 1024 bit. Sites which wish to use 2048 run time can override the default in their configuration. Likewise, when 8.15.2 is imported, sites that prefer not to use a precomputed DH parameter can create their own by overriding the default to use a run-time or their own precomputed (but "unique") using a DH parameter file on the local file system.
More information about the svn-src-head
mailing list