why aren't people just defaulting to 2048? | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		cchance 8 months ago \| parent \| context \| favorite \| on: Cracking a 512-bit DKIM key for less than $8 in th... why aren't people just defaulting to 2048?

briffle 8 months ago | [–]

They are, but someone set this up in 2016 or so, and nobody has changed it :) Most likely the person got laid off, or went somewhere else, and nobody on the team has any idea about it.

daneel_w 8 months ago | [–]

They are defaulting to 1024-2048. Systems signing with 512 bit keys are an outlier.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact