On Wed, Aug 29, 2012 at 19:20, Kevin Chadwick wrote: >> > By default, it will use Blowfish in CBC mode with a different random > IV for >> > each envelope and message. User provided key is expanded using sha256 > but a >> > different cipher and digest may be specified in smtpd.conf >> >> I think this should default to AES-128. Introducing a new design >> that uses an obsolete cipher does not strike me as a prudent approach.
Seconded. Was going to ask myself. > I would have thought AES-128 was more obsolete than blowfish? Speed? > ? How can the current standard be obsolete?