AUTOSSL with 4096-bit Encryption?

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,884
2,243
463
Hello @Nicola Urbinati,

Could you add a comment to that feature request to let us know the specific reason you'd like to see support for 4096-bit keys added? This type of information is helpful to Development when evaluating which features to implement.

Thank you.
 

janipewter

Active Member
Jan 2, 2013
44
3
8
cPanel Access Level
Root Administrator
4096 bit RSA is overkill and unnecessary, and it just adds a massive performance hit on busy webservers. I used to solely use 4096 bit RSA keys on all my non-cPanel hosting, until I realised that actually it is not currently feasible to crack even 2048 bit RSA. For the performance penalty, using 4096 is simply not worth it.

A far, far better option would be for cPanel to add support for ECDSA keys, and then you could use 384 bit EC key, which is much faster and more secure than 4096 bit RSA.