On 09/17/2015 09:07 PM, Daniel Pocock wrote: > For reSIProcate 1.10.0, we will support PFS on TLS connections, this > requires a DH parameters file to be generated on each installation of > the package. Why is forward secrecy with ECDHE not good enough? For that, you won't need to generate DH parameters at all. -- Florian Weimer / Red Hat Product Security -- packaging mailing list packaging@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/packaging
