Hi
I would like to change the default DirectAdmin keysize for new certificates.
It defaults to secp384r1 when requesting a new certificate.
I would like to change it to prime256v1.
Lower keysize means a certificate will be validated a little bit faster by the client when browsing websites,
also certificates are renewed every 3 months, so I don't see any upside for using a larger keysize (for now).
It seems like there is no option to do this.
I could rewrite the /usr/local/directadmin/scripts/letsencrypt.sh script
remove this line: KEY_SIZE=$3
change with this line: KEY_SIZE="ec256"
This change is however undone when DirectAdmin or the letsencrypt script is updated.
Any tips?
Kind regards
Dries
I would like to change the default DirectAdmin keysize for new certificates.
It defaults to secp384r1 when requesting a new certificate.
I would like to change it to prime256v1.
Lower keysize means a certificate will be validated a little bit faster by the client when browsing websites,
also certificates are renewed every 3 months, so I don't see any upside for using a larger keysize (for now).
It seems like there is no option to do this.
I could rewrite the /usr/local/directadmin/scripts/letsencrypt.sh script
remove this line: KEY_SIZE=$3
change with this line: KEY_SIZE="ec256"
This change is however undone when DirectAdmin or the letsencrypt script is updated.
Any tips?
Kind regards
Dries
