Single ECDH Curve for forward secrecy
Alan DeKok
aland at deployingradius.com
Mon Feb 3 19:42:10 CET 2020
On Feb 3, 2020, at 11:39 AM, Jan-Frederik Rieckers <rieckers+freeradius-devel at uni-bremen.de> wrote:
>
> In my opinion, it seems a little bit odd, that leaving out the option
> defaults to "prime256v1", but setting it to empty string enables all curves.
> There's also no documentation for this behavior in the configuration
> file. Maybe this could be added?
Sure. Patches are always welcome.
But in general, *any* configuration item can be set to "" to disable it.
Alan DeKok.
More information about the Freeradius-Devel
mailing list