⚡ ship pre-generated dh parameters
This commit is contained in:
parent
ba554734a2
commit
49a12e960c
@ -122,8 +122,15 @@ easyrsa_server_keys_create(){
|
||||
|
||||
|
||||
## OTHER KEYS ##
|
||||
# dh parameters
|
||||
openssl dhparam -out "${DATA_SERVER_DIR}/dh2048.pem" 2048
|
||||
# dh parameters from `IETF RFC 7919`
|
||||
echo "-----BEGIN DH PARAMETERS-----
|
||||
MIIBCAKCAQEA//////////+t+FRYortKmq/cViAnPTzx2LnFg84tNpWp4TZBFGQz
|
||||
+8yTnc4kmz75fS/jY2MMddj2gbICrsRhetPfHtXV/WVhJDP1H18GbtCFY2VVPe0a
|
||||
87VXE15/V8k1mE8McODmi3fipona8+/och3xWKE2rec1MKzKT0g6eXq8CrGCsyT7
|
||||
YdEIqUuyyOP7uWrat2DX9GgdT0Kj3jlN9K5W7edjcrsZCwenyO4KbXCeAvzhzffi
|
||||
7MA0BM0oNC9hkXL+nOmFg/+OTxIy7vKBg8P+OxtMb61zO7X8vC7CIAXFjvGDfRaD
|
||||
ssbzSibBsu/6iGtCOGEoXJf//////////wIBAg==
|
||||
-----END DH PARAMETERS-----" > "${DATA_SERVER_DIR}/dh2048.pem"
|
||||
|
||||
# tls-crypt key
|
||||
openvpn --genkey secret "${DATA_SERVER_DIR}/tls-crypt.key"
|
||||
|
Loading…
Reference in New Issue
Block a user