[gnutls-devel] weak dh issue

Nikos Mavrogiannopoulos nmav at gnutls.org
Thu May 21 11:57:34 CEST 2015


On Wed, May 20, 2015 at 10:36 PM, Tim Kosse
<tim.kosse at filezilla-project.org> wrote:
> Hi,
> The documentation for the deprecated gnutls_dh_set_prime_bits currently
> says "values lower than 512 bits may allow decryption of the exchanged
> data". I suppose this needs to be updated as well as long as the
> function isn't removed.

Updated to warn if setting anything lower than the current default.
https://gitlab.com/gnutls/gnutls/commit/de12109088650e3c55e1b942987d899b15ca2a17

regards,
Nikos



More information about the Gnutls-devel mailing list