瀏覽代碼

dovecot dhparams length

Bob Mottram 8 年之前
父節點
當前提交
1f76684968
共有 1 個文件被更改,包括 3 次插入1 次删除
  1. 3
    1
      src/freedombone-base-email

+ 3
- 1
src/freedombone-base-email 查看文件

@@ -1256,7 +1256,9 @@ function configure_imap {
1256 1256
     fi
1257 1257
     sed -i "s|#ssl_key =.*|ssl_key = </etc/ssl/private/${DEFAULT_DOMAIN_NAME}.key|g" /etc/dovecot/conf.d/10-ssl.conf
1258 1258
     sed -i "s|ssl_key =.*|ssl_key = </etc/ssl/private/${DEFAULT_DOMAIN_NAME}.key|g" /etc/dovecot/conf.d/10-ssl.conf
1259
-    sed -i 's|#ssl_dh_parameters_length.*|ssl_dh_parameters_length = 2048|g' /etc/dovecot/conf.d/10-ssl.conf
1259
+    if [[ $(cert_exists ${DEFAULT_DOMAIN_NAME}) == "1" ]]; then
1260
+        sed -i "s|#ssl_dh_parameters_length.*|ssl_dh_parameters_length = ${DH_KEYLENGTH}|g" /etc/dovecot/conf.d/10-ssl.conf
1261
+    fi
1260 1262
     sed -i 's/#ssl_prefer_server_ciphers.*/ssl_prefer_server_ciphers = yes/g' /etc/dovecot/conf.d/10-ssl.conf
1261 1263
     sed -i "s|#ssl_protocols =.*|ssl_protocols = '$SSL_PROTOCOLS'|g" /etc/dovecot/conf.d/10-ssl.conf
1262 1264
     sed -i "s|ssl_protocols =.*|ssl_protocols = '$SSL_PROTOCOLS'|g" /etc/dovecot/conf.d/10-ssl.conf