News: This forum is now permanently frozen.
Pages: [1]
Topic: IPSEC DH and PFS key group encryption strength  (Read 3318 times)
« on: January 12, 2010, 21:44:27 »
sfeaganes *
Posts: 2

I was wondering if there are any plans to have 2048 bit , 4096 bit or higher entropy in monowall. I am using a soekris net4801 and I am limited to group 5 at 1536 as well as AES 128 bit. I know blowfish is better but I dont use anything on the remote end that supports blowfish. A snap gear (formerly secure computing) 560 is at the other end.

Any information you have would be appreciated.

Thanks,
« Reply #1 on: January 15, 2010, 08:11:55 »
rpsmith ***
Posts: 113

I would stick with AES and Group 2. With today's hardware it's virtually unbreakable.  Just make sure you are using a strong PSK.  I like to use this site for my passwords:  https://www.grc.com/passwords.htm

Roy...
« Last Edit: January 15, 2010, 11:32:59 by rpsmith »
« Reply #2 on: January 18, 2010, 18:26:26 »
sfeaganes *
Posts: 2

Thanks rpsmith,

I agree that a large password/key technically renders the security unbreakable in most cases but I still think there is something to be said for using the highest entropy possible.

Does anyone know if there are plans to go higher with the available entropy groups?
 
Pages: [1]
 
 
Powered by SMF 1.1.20 | SMF © 2013, Simple Machines