reassign 620739 puppet-common merge 620739 617614 thanks Hi,
On Sun, 3 Apr 2011 20:41:38 +0200, Bastian Blank <[email protected]> wrote: > > puppet have the following defaults for the CA: > - Key length: 1024 bits > - Hash: MD5. > > MD5 is broken in the meantime and 1024 bits keylength is not longer > considered safe. > > The german BSI[1] produces a yearly document[2] that defines which > algorithms should be save for usage over the next five years. This > document rules out MD5, SHA-1 and RIPEMD-160 for hashing and key > sizes < 1976 bits for RSA keys right now. Thanks for the report, but this was already reported a month ago, and sent upstream. I will include your additional information from BSI in the upstream bug. micah
pgpTYHINHyKo8.pgp
Description: PGP signature
