(Sorry, got stuck in my outbox and I didn't notice for a while)
> From: owner-openssl-us...@openssl.org On Behalf Of Marco Bambini
> Sent: Monday, September 22, 2014 02:44
> Thanks a lot for the explanation, so instead of generating new parameters
on
> the fly I could just create them once and th
Thanks a lot for the explanation, so instead of generating new parameters on
the fly I could just create them once and then load on requests via the
SSL_CTX_set_tmp_dh_callback?
Like in the example listed on:
https://www.openssl.org/docs/ssl/SSL_CTX_set_tmp_dh_callback.html
Should I provide jus
> From: owner-openssl-us...@openssl.org On Behalf Of Marco Bambini
> Sent: Friday, September 19, 2014 12:04
> my server needs to accept DHE ciphers from clients so I think I would need
to
> be able to load static dh512.pem, dh1024.pem, dh2048.pem and dh4096.pem
> certificates on server side. In or
Hello,
my server needs to accept DHE ciphers from clients so I think I would need to
be able to load static dh512.pem, dh1024.pem, dh2048.pem and dh4096.pem
certificates on server side. In order to increase security I would like to skip
the pem file loading step and generate these dh certificate
