>By raising the limit, you don’t suddenly put every application at risk of a DoS, > because these applications won’t suddenly use a 16k RSA key. Yes we do, because the other side could send a key, not local config.