Revision 34bf7dee
Added by Stilez y about 9 years ago
| src/usr/local/www/wizards/openvpn_wizard.xml | ||
|---|---|---|
| 367 | 367 |
<field> |
| 368 | 368 |
<name>keylength</name> |
| 369 | 369 |
<displayname>Key length</displayname> |
| 370 |
<description><br/>Size of the key which will be generated. The larger the key, the more security it offers, but larger keys are generally slower to use. As of 2016, 2048 bit is the minimum and most common selection and 4096 is the maximum in common use. For more information see <a href="https://keylength.com">keylength.com</a></description>
|
|
| 370 |
<description><br/>Size of the key which will be generated. The larger the key, the more security it offers, but larger keys are slower to generate and at the start of a session. As of 2016, 2048 bit is the minimum and most common selection and 4096 is the maximum in common use. For more information see <a href="https://keylength.com">keylength.com</a></description>
|
|
| 371 | 371 |
<type>select</type> |
| 372 | 372 |
<value>2048</value> |
| 373 | 373 |
<bindstofield>ovpnserver->step6->keylength</bindstofield> |
Also available in: Unified diff
Accuracy
Large keys are not "slower to use" in many cases, since they are only used to validate or set up a session. An ongoing session usually transfers to a symmetric algorithm once established, and the user won't notice the short extra delay in session startup.
(cherry picked from commit d4fdce4e2e3456c9d89b61e11b1d31e2f83624a5)