<div dir="ltr">For SSH<br><br>My question was mainly about SSH keys, which I am thinking of
replacing just in case, and want to know what are the best hardening
practices. <br><br>Number of bits is one factor, yes. What about cipher choices, ...etc.?<br><br>For SSL ...<br><br>The self signed SSL certificate example is for internal use, mainly testing and experimenting. It is not meant to be exposed to real site visitors, since people will freak out if their browser says "hey, this is not vouched for". So don't worry about that. The question is mainly for when a real SSL certificate is needed.<br>
<br clear="all"><div class="gmail_extra"><br>-- <br>Khalid M. Baheyeldin<br><a href="http://2bits.com" target="_blank">2bits.com</a>, Inc.<br>Fast Reliable Drupal<br>Drupal optimization, development, customization and consulting.<br>
Simplicity is prerequisite for reliability. -- Edsger W.Dijkstra<br>Simplicity is the ultimate sophistication. -- Leonardo da Vinci<br>For every complex problem, there is an answer that is clear, simple, and wrong." -- H.L. Mencken<br>
</div></div>