File tree 1 file changed +3
-3
lines changed 1 file changed +3
-3
lines changed Original file line number Diff line number Diff line change 1
1
#! /bin/bash -e
2
2
3
- # The first argument is the bit depth of the dhparam, or 2048 if unspecified
4
- DHPARAM_BITS=${1:- 2048 }
3
+ # The first argument is the bit depth of the dhparam, or 4096 if unspecified
4
+ DHPARAM_BITS=${1:- 4096 }
5
5
GENERATE_DHPARAM=${2:- true}
6
6
7
7
# If a dhparam file is not available, use the pre-generated one and generate a new one in the background.
@@ -43,7 +43,7 @@ touch $GEN_LOCKFILE
43
43
# Generate a new dhparam in the background in a low priority and reload nginx when finished (grep removes the progress indicator).
44
44
(
45
45
(
46
- nice -n +5 openssl dhparam -out $DHPARAM_FILE .tmp $DHPARAM_BITS 2>&1 \
46
+ nice -n +5 openssl dhparam -dsaparam - out $DHPARAM_FILE .tmp $DHPARAM_BITS 2>&1 \
47
47
&& mv $DHPARAM_FILE .tmp $DHPARAM_FILE \
48
48
&& echo " dhparam generation complete, reloading nginx" \
49
49
&& nginx -s reload
You can’t perform that action at this time.
0 commit comments