Skip to content
Snippets Groups Projects
Commit cf282055 authored by nimrod's avatar nimrod
Browse files

In most OpenSSL versions (1.0.2 or earlier), SHA256 is NOT an available hashing 

algorithm (according to the documentation) and OpenSSL ignores the field and
uses the default, which is MD5. Setting the default hash to SHA1.
parent ef3f1cba
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
Showing
with 2 additions and 2 deletions
ssl-ca
+ 2
2
View file @ cf282055
...@@ -12,7 +12,7 @@ dir = $PWD ...@@ -12,7 +12,7 @@ dir = $PWD
certs = \$dir/certs certs = \$dir/certs
certificate = \$dir/CA.crt certificate = \$dir/CA.crt
private_key = \$dir/CA.key private_key = \$dir/CA.key
default_md = sha256 default_md = sha1
default_days = 365 default_days = 365
email_in_dn = no email_in_dn = no
RANDFILE = /dev/urandom RANDFILE = /dev/urandom
...@@ -22,7 +22,7 @@ database = /dev/null ...@@ -22,7 +22,7 @@ database = /dev/null
distinguished_name = req_distinguished_name distinguished_name = req_distinguished_name
prompt = no prompt = no
encrypt_key = no encrypt_key = no
default_md = sha256 default_md = sha1
default_bits = 2048 default_bits = 2048
RANDFILE = /dev/urandom RANDFILE = /dev/urandom
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment