Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Use 4096 bits on the auth CA instead of 2048. #2503

merged 1 commit into from Mar 31, 2016
Changes from all commits
File filter...
Filter file types
Jump to…
Jump to file or symbol
Failed to load files and symbols.


Just for now

Use 4096 bits on the auth CA instead of 2048.

  • Loading branch information...
bowlofeggs committed Mar 30, 2016
commit 9f969b94c4b4f310865455d36db207de6cffebca
@@ -30,9 +30,10 @@ CN=`hostname --fqdn`

mkdir -p $TMP
chmod 700 $TMP

# create CA key
openssl genrsa -out $TMP/ca.key 2048 &> /dev/null
openssl genrsa -out $TMP/ca.key 4096 &> /dev/null

# create signing request
openssl req \
@@ -52,12 +53,13 @@ openssl x509 \
-out $TMP/ca.crt &> /dev/null

# install
cp $TMP/ca.key $CA_KEY
cp $TMP/ca.crt $CA_CRT
mv $TMP/ca.key $CA_KEY
mv $TMP/ca.crt $CA_CRT
rm $TMP/ca.req
chown root:apache $CA_KEY
chown root:apache $CA_CRT
chmod 640 $CA_KEY
chmod 640 $CA_CRT

# clean
rm -rf $TMP
rmdir $TMP
ProTip! Use n and p to navigate between commits in a pull request.
You can’t perform that action at this time.