Use DH parameters from OpenSSL and remove support for ephemeral RSA

This adds support for DH parameters from 1024 to 8192 bits.
author: manuel <manuel@mausz.at> 2015-06-22 21:28:22 +0200
committer: manuel <manuel@mausz.at> 2015-06-22 21:28:22 +0200
commit: 15a5232629a37b3df8a476f984343375950fa2ff (patch)
tree: 790fbad488ef2bc481ae1562ad5949afa4e818b6 /update_tmprsadh.sh
parent: 3284e61d7a7a49620e64c7d634776f8bcf4f8119 (diff)
download: qmail-15a5232629a37b3df8a476f984343375950fa2ff.tar.gz
qmail-15a5232629a37b3df8a476f984343375950fa2ff.tar.bz2
qmail-15a5232629a37b3df8a476f984343375950fa2ff.zip
1 files changed, 0 insertions, 25 deletions
diff --git a/update_tmprsadh.sh b/update_tmprsadh.sh
deleted file mode 100644
index 563fcfb..0000000
--- a/update_tmprsadh.sh
+++ /dev/null
@@ -1,25 +0,0 @@
-#!/bin/sh
-# Update temporary RSA and DH keys
-# Frederik Vermeulen 2004-05-31 GPL
-umask 0077 || exit 0
-export PATH="$PATH:/usr/local/bin/ssl:/usr/sbin"
-openssl genrsa -out QMAIL/control/rsa512.new 512 &&
-chmod 600 QMAIL/control/rsa512.new &&
-chown UGQMAILD QMAIL/control/rsa512.new &&
-mv -f QMAIL/control/rsa512.new QMAIL/control/rsa512.pem
-echo
-openssl dhparam -2 -out QMAIL/control/dh512.new 512 &&
-chmod 600 QMAIL/control/dh512.new &&
-chown UGQMAILD QMAIL/control/dh512.new &&
-mv -f QMAIL/control/dh512.new QMAIL/control/dh512.pem
-echo
-openssl dhparam -2 -out QMAIL/control/dh1024.new 1024 &&
-chmod 600 QMAIL/control/dh1024.new &&
-chown UGQMAILD QMAIL/control/dh1024.new &&
-mv -f QMAIL/control/dh1024.new QMAIL/control/dh1024.pem
author	manuel <manuel@mausz.at>	2015-06-22 21:28:22 +0200
committer	manuel <manuel@mausz.at>	2015-06-22 21:28:22 +0200
commit	15a5232629a37b3df8a476f984343375950fa2ff (patch)
tree	790fbad488ef2bc481ae1562ad5949afa4e818b6 /update_tmprsadh.sh
parent	3284e61d7a7a49620e64c7d634776f8bcf4f8119 (diff)
download	qmail-15a5232629a37b3df8a476f984343375950fa2ff.tar.gz qmail-15a5232629a37b3df8a476f984343375950fa2ff.tar.bz2 qmail-15a5232629a37b3df8a476f984343375950fa2ff.zip

diff --git a/update_tmprsadh.sh b/update_tmprsadh.sh deleted file mode 100644 index 563fcfb..0000000 --- a/update_tmprsadh.sh +++ /dev/null
@@ -1,25 +0,0 @@
1	#!/bin/sh
2
3	# Update temporary RSA and DH keys
4	# Frederik Vermeulen 2004-05-31 GPL
5
6	umask 0077 \|\| exit 0
7
8	export PATH="$PATH:/usr/local/bin/ssl:/usr/sbin"
9
10	openssl genrsa -out QMAIL/control/rsa512.new 512 &&
11	chmod 600 QMAIL/control/rsa512.new &&
12	chown UGQMAILD QMAIL/control/rsa512.new &&
13	mv -f QMAIL/control/rsa512.new QMAIL/control/rsa512.pem
14	echo
15
16	openssl dhparam -2 -out QMAIL/control/dh512.new 512 &&
17	chmod 600 QMAIL/control/dh512.new &&
18	chown UGQMAILD QMAIL/control/dh512.new &&
19	mv -f QMAIL/control/dh512.new QMAIL/control/dh512.pem
20	echo
21
22	openssl dhparam -2 -out QMAIL/control/dh1024.new 1024 &&
23	chmod 600 QMAIL/control/dh1024.new &&
24	chown UGQMAILD QMAIL/control/dh1024.new &&
25	mv -f QMAIL/control/dh1024.new QMAIL/control/dh1024.pem