On Mon, Oct 18, 2004, P. George wrote: > will it _help_ guard against brute force attempts to simply replace my > server key on a daily or weekly basis? > > if so, should my client app be coded to do the same? or is changing > out the server's key sufficient to this end? >
If your key sizes are reasonable it isn't feasible to break a *single* server key using brute force attacks. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
