Node:sfs_srp_params
,
Next:sfscd_config
,
Previous:sfssd_config
,
Up:SFS configuration
sfs_srp_params
--Default parameters for SRP protocolSpecifies a "strong prime" and a generator for use in the SRP
protocol. SFS ships with a particular set of parameters because
generating new ones can take a considerable amount of CPU time. You can
replace these parameters with randomly generated ones using the
sfskey srpgen -b bits
command.
Note that SRP parameters can afford to be slightly shorter than Rabin
public keys, both because SRP is based on discrete logs rather than
factoring, and because SRP is used for authentication, not secrecy.
1,024 is a good value for bits even if PubKeySize
is
slightly larger in sfs_config
.