Thijs van Dien
@thijsvandien.bsky.social
2048-bit RSA, the “weakest” still recommended for common use, is expected to remain secure into the 2030s. Root certificates rely on the same crypto, and are designed to be (very) long-lived, which wouldn’t be viable otherwise. Even 1024-bit being phased out is more of a precaution for now.
April 15, 2025 at 1:05 AM
2048-bit RSA, the “weakest” still recommended for common use, is expected to remain secure into the 2030s. Root certificates rely on the same crypto, and are designed to be (very) long-lived, which wouldn’t be viable otherwise. Even 1024-bit being phased out is more of a precaution for now.
Not necessarily. Short-lived certificates mostly aim to address keys being stolen, rather than broken. Taking that to the extreme means certificate revocation, which is tricky business, becomes obsolete.
April 14, 2025 at 10:03 PM
Not necessarily. Short-lived certificates mostly aim to address keys being stolen, rather than broken. Taking that to the extreme means certificate revocation, which is tricky business, becomes obsolete.
You can set [&>p]:max-w-3xl on the container if that helps. Or if you don't want to specify all text elements, maybe empty vs non-empty would be a useful distinction, like *:max-w-3xl [&>*:empty]:max-w-full. Using v3 compatible syntax here; with v4 it can be *:empty:max-w-full.
February 7, 2025 at 7:05 PM
You can set [&>p]:max-w-3xl on the container if that helps. Or if you don't want to specify all text elements, maybe empty vs non-empty would be a useful distinction, like *:max-w-3xl [&>*:empty]:max-w-full. Using v3 compatible syntax here; with v4 it can be *:empty:max-w-full.