Re: sendmail 8.18.1 MFC'ed to stable/13 and stable/14

In reply to: deleted: "deleted (X-No-Archive)"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Gregory Shapiro <gshapiro_at_freebsd.org>
Date: Tue, 13 Feb 2024 17:10:32 UTC

> > As for the dhparams file, lets use the ffdhe4096 as per RFC7919  one and stop continuing generating these ourselves.
> > The file can be grabbed from e.g. https://raw.githubusercontent.com/internetstandards/dhe_groups/master/ffdhe4096.pem
> 
> I seem to recall that sendmail is doing someting along these lines anyhow if the DHParameters file is missing or empty.

Yes, from the documentation:

       If the file is not readable or contains unusable data, the default ``i'' is used instead.

       ``i'' which selects a precomputed, fixed 2048 bit prime.