On Wed, Aug 28, 2002 at 10:57:55PM +0200, Matthias Buelow wrote:
> Stefan Krüger wrote:
> >Hi folks,
> >
> >I've just read:
> >
> >http://www.counterpane.com/crypto-gram-0204.html#3 and
> >http://online.securityfocus.com/archive/1/263924
> >
> >and maybe we should update our rc scripts,
> >so that ssh-keygen generates at least 1280 Bit keys
> 
> I think this is highly overrated and only of theoretical
> value for most *BSD users.  It would be ok to document,
> for some paranoid users which fall for the hype but then
> please leave it at that.  

I dont think its too much overrated and theoretical.

> Some of us run NetBSD on old
> hardware and don't want to be crippled by excessive
> default values with little or no practical impact.

A very valid fact. But perhaps a note could be added which addresses
the info leaving it up to the user what to do?
Bye,

Mipam.