Commit | Line | Data |
---|---|---|
de45f55a AM |
1 | Description: Enlarge default server side size of DH parameters to 2048 |
2 | from 1024. This patch has no effect if building against gnutls >= 2.12, | |
3 | because exim is using gnutls_sec_param_to_pk_bits() to get correct number | |
4 | of dh_bits when built against newer gnutls-versions. | |
5 | Author: Marc Haber <mh+debian-packages@zugschlus.de> | |
6 | Origin: vendor | |
7 | Forwarded: no | |
8 | Last-Update: 2013-09-28 | |
9 | ||
10 | --- exim4-4.82~rc1.orig/src/tls-gnu.c | |
11 | +++ exim4-4.82~rc1/src/tls-gnu.c | |
12 | @@ -164,7 +164,7 @@ callbacks. */ | |
13 | can ask for a bit-strength. Without that, we stick to the constant we had | |
14 | before, for now. */ | |
15 | #ifndef EXIM_SERVER_DH_BITS_PRE2_12 | |
16 | -#define EXIM_SERVER_DH_BITS_PRE2_12 1024 | |
17 | +#define EXIM_SERVER_DH_BITS_PRE2_12 2048 | |
18 | #endif | |
19 | ||
20 | #define exim_gnutls_err_check(Label) do { \ |