Facebook
TwitterHi,
I am just copy and pasting the info from the Parralels Plesk Panel 11.x for Linux as Linux seems to have been given this important feature while Windows users have been left out to dry.
http://forum.parallels.com/showthread.php?264562-Enhance-keylength-of-Domainkeys-for-more-security
Currently Plesk uses 768bit for sha-rsa private keys of created all Domainkey for signing.
You can check it:
root@server1234 ~ # openssl rsa -in /etc/domainkey/example.org/default -text
Private-Key: (768 bit)
The short keys are violating RFC 4871 see Section 3.3.3
How can the keylength be extended?
This is a must for secure signing mails with DKIM/Domainkeys.
See also
http://www.h-online.com/security/new...s-1736423.html
http://tools.ietf.org/html/rfc4871#section-3.3.3
For the Linux version the users have reported private keys are now in 1024 bit.
I have tried with the Windows version using the latest update #10 but still only getting 768 bit key.
Whats up with this then ?
I am just copy and pasting the info from the Parralels Plesk Panel 11.x for Linux as Linux seems to have been given this important feature while Windows users have been left out to dry.
http://forum.parallels.com/showthread.php?264562-Enhance-keylength-of-Domainkeys-for-more-security
Currently Plesk uses 768bit for sha-rsa private keys of created all Domainkey for signing.
You can check it:
root@server1234 ~ # openssl rsa -in /etc/domainkey/example.org/default -text
Private-Key: (768 bit)
The short keys are violating RFC 4871 see Section 3.3.3
How can the keylength be extended?
This is a must for secure signing mails with DKIM/Domainkeys.
See also
http://www.h-online.com/security/new...s-1736423.html
http://tools.ietf.org/html/rfc4871#section-3.3.3
For the Linux version the users have reported private keys are now in 1024 bit.
I have tried with the Windows version using the latest update #10 but still only getting 768 bit key.
Whats up with this then ?
