The 'best practices' standard *for everyone who doesn't have to support
older browsers that only did 512bit keys* is a 1024 bit key.
RSA operations are only done at the start of an SSL session, not at each
HTTP(S) connection. (Because public key is so expensive, it's typically
only used to exchange a bulk symmetric key for application data
encrypt/decrypt.)
/r$
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
