Sfoglia il codice sorgente

dovecot dhparams length

Bob Mottram 8 anni fa
parent
commit
1f76684968
1 ha cambiato i file con 3 aggiunte e 1 eliminazioni
  1. 3
    1
      src/freedombone-base-email

+ 3
- 1
src/freedombone-base-email Vedi File

@@ -1256,7 +1256,9 @@ function configure_imap {
1256 1256
     fi
1257 1257
     sed -i "s|#ssl_key =.*|ssl_key = </etc/ssl/private/${DEFAULT_DOMAIN_NAME}.key|g" /etc/dovecot/conf.d/10-ssl.conf
1258 1258
     sed -i "s|ssl_key =.*|ssl_key = </etc/ssl/private/${DEFAULT_DOMAIN_NAME}.key|g" /etc/dovecot/conf.d/10-ssl.conf
1259
-    sed -i 's|#ssl_dh_parameters_length.*|ssl_dh_parameters_length = 2048|g' /etc/dovecot/conf.d/10-ssl.conf
1259
+    if [[ $(cert_exists ${DEFAULT_DOMAIN_NAME}) == "1" ]]; then
1260
+        sed -i "s|#ssl_dh_parameters_length.*|ssl_dh_parameters_length = ${DH_KEYLENGTH}|g" /etc/dovecot/conf.d/10-ssl.conf
1261
+    fi
1260 1262
     sed -i 's/#ssl_prefer_server_ciphers.*/ssl_prefer_server_ciphers = yes/g' /etc/dovecot/conf.d/10-ssl.conf
1261 1263
     sed -i "s|#ssl_protocols =.*|ssl_protocols = '$SSL_PROTOCOLS'|g" /etc/dovecot/conf.d/10-ssl.conf
1262 1264
     sed -i "s|ssl_protocols =.*|ssl_protocols = '$SSL_PROTOCOLS'|g" /etc/dovecot/conf.d/10-ssl.conf