[Freedombox-discuss] LetsEncrypt - 4096 certificate option
On 02/13/2017 08:33 PM, Diederik de Haas wrote:
> On maandag 13 februari 2017 13:47:04 CET Pierre L. wrote:
>> Is it possible to boost Letsencrypt certificate to 4096 bits?
>
> Yes.
>
>> May be inside a file, but which one ?!
>
> Put the following in the default configuration file, which is /etc/certbot/
> cli.ini or ~/.config/letsencrypt/cli.ini according to the manpage or put it in
> your own (ini style) config file which you then specify with the '-c' parameter:
>
> # Use a 4096 bit RSA key instead of 2048
> rsa-key-size = 4096
>
> That's what I have on my (Debian) system. I haven't tried it with freedombox
> just yet, but I doubt they divert from the Debian package.
>
I have created an issue to consider making better strength as default.
Comments are welcome: https://github.com/freedombox/Plinth/issues/737
--
Sunil
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/freedombox-discuss/attachments/20170213/276db4f7/attachment-0001.sig>
Reply to: