[Help-gnutls] Diffie Hellman
Lennart Koopmann
lennart at scopeport.org
Mon Nov 3 14:02:14 CET 2008
On Monday 03 November 2008 13:33:11 Martin Knappe wrote:
> is there any point in calling gnutls_dh_set_prime_bits on the server side?
> many thanks
Yes. On the server side you set the number of DH prime bits the server offers
in maximum. You will notice that your GnuTLS initialization process will take
longer the higher you set the DH prime bits because generation takes longer.
You should regularly re-call gnutls_dh_set_prime_bits for security reasons.
So long
Lennart Koopmann
More information about the Gnutls-help
mailing list