Use string cert CA defaults
Switch from sha1 to sha256 and from 1024 bits to 2048 bits. Do this because things don't like the old inseucre sha1+1024bits combo. Change-Id: Iae2958969aed0cd880844e19e8055c8bdc7d064d
This commit is contained in:
parent
a292c5068c
commit
faffde1f97
6
lib/tls
6
lib/tls
|
@ -113,11 +113,11 @@ new_certs_dir = \$dir/newcerts
|
|||
certificate = \$dir/cacert.pem
|
||||
private_key = \$dir/private/cacert.key
|
||||
RANDFILE = \$dir/private/.rand
|
||||
default_md = default
|
||||
default_md = sha256
|
||||
|
||||
[ req ]
|
||||
default_bits = 1024
|
||||
default_md = sha1
|
||||
default_bits = 2048
|
||||
default_md = sha256
|
||||
|
||||
prompt = no
|
||||
distinguished_name = ca_distinguished_name
|
||||
|
|
Loading…
Reference in New Issue