Results 1 to 3 of 3

Thread: /etc/dovecot/dh.pem

  1. #1
    Join Date
    May 2008
    Location
    Bulgaria
    Posts
    946

    /etc/dovecot/dh.pem

    The /etc/dovecot/dh.pem is generated as 1024 bit. Security scanners are complaining that it's insecure.

    Is it safe to make it higher (let say 4096) with
    Code:
    openssl dhparam 4096 > dh.pem
    ?
    Last edited by wattie; 12-25-2018 at 03:36 PM.

  2. #2
    Join Date
    May 2014
    Location
    Netherlands Germany
    Posts
    536
    Ah you read , prettige feestdagen.

    Take care of warning :# This might take a very long time. Run it on a machine with sufficient entropy.

    I'm waiting for this answer to!

    As for the others in that topic http://forum.directadmin.com/showthr...050#post293050

    I PM you another testsite that is even more strict for pci and other compliance, very hard with a normal directadmin box and still communicating with the world to gat the 100% there
    DUTCH GERMAN, GERMAN DUTCH

  3. #3
    Join Date
    May 2008
    Location
    Bulgaria
    Posts
    946
    I did it - it took few minutes (8-core Xeon machine). Replaced the file and... seems to be working fine.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •