⚡ ship pre-generated dh parameters
This commit is contained in:
parent
ba554734a2
commit
49a12e960c
@ -122,8 +122,15 @@ easyrsa_server_keys_create(){
|
|||||||
|
|
||||||
|
|
||||||
## OTHER KEYS ##
|
## OTHER KEYS ##
|
||||||
# dh parameters
|
# dh parameters from `IETF RFC 7919`
|
||||||
openssl dhparam -out "${DATA_SERVER_DIR}/dh2048.pem" 2048
|
echo "-----BEGIN DH PARAMETERS-----
|
||||||
|
MIIBCAKCAQEA//////////+t+FRYortKmq/cViAnPTzx2LnFg84tNpWp4TZBFGQz
|
||||||
|
+8yTnc4kmz75fS/jY2MMddj2gbICrsRhetPfHtXV/WVhJDP1H18GbtCFY2VVPe0a
|
||||||
|
87VXE15/V8k1mE8McODmi3fipona8+/och3xWKE2rec1MKzKT0g6eXq8CrGCsyT7
|
||||||
|
YdEIqUuyyOP7uWrat2DX9GgdT0Kj3jlN9K5W7edjcrsZCwenyO4KbXCeAvzhzffi
|
||||||
|
7MA0BM0oNC9hkXL+nOmFg/+OTxIy7vKBg8P+OxtMb61zO7X8vC7CIAXFjvGDfRaD
|
||||||
|
ssbzSibBsu/6iGtCOGEoXJf//////////wIBAg==
|
||||||
|
-----END DH PARAMETERS-----" > "${DATA_SERVER_DIR}/dh2048.pem"
|
||||||
|
|
||||||
# tls-crypt key
|
# tls-crypt key
|
||||||
openvpn --genkey secret "${DATA_SERVER_DIR}/tls-crypt.key"
|
openvpn --genkey secret "${DATA_SERVER_DIR}/tls-crypt.key"
|
||||||
|
Loading…
Reference in New Issue
Block a user