OpenSSH is about to change. (For the better.) - eviltoast
  • deepdive@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    Strange enough TLS 1.3 still doesn’t support signed ed25519 certificates :| P‐256, NIST P‐384 or NIST P‐521 curves are known to be “backdoored” or having deliberately chosen mathematical weakness. I’m not an expert and just a noob security/selfhoster enthusiast but I don’t want to depend on curves made by NSA or other spy agencies !

    I also wondering if the EU isn’t going to implement something similar with all their new spying laws currently discussed…