mirror of
https://github.com/znc/znc.git
synced 2026-03-28 17:42:41 +01:00
f578bf9424
This is superior to DH-BLOWFISH as Blowfish may suffer from certain classes of weak keys, which is difficult to mitigate against without regenerating DH parameters repeatedly. AES also has faced far more scrutiny and is believed to be more secure. Reference implementation (services-side): https://github.com/atheme/atheme/blob/master/modules/saslserv/dh-aes.c