Bump the system dh-parameters file to 2048 per request on dev@.

author: Matthew Grooms <mgrooms@pfsense.org> 2008-09-04 17:13:14 +0000
committer: Matthew Grooms <mgrooms@pfsense.org> 2008-09-04 17:13:14 +0000
commit: 8411b218e6e656767ad9378f3b11e9110067e8a1 (patch)
tree: 67bdc8e77a2ecb7bda137a701d7e33a6c5200f38 /etc/inc/openvpn.inc
parent: a5d223c6566c8fc6aa1adbed52dd66c97167fcec (diff)
download: pfsense-8411b218e6e656767ad9378f3b11e9110067e8a1.zip
pfsense-8411b218e6e656767ad9378f3b11e9110067e8a1.tar.gz
1 files changed, 4 insertions, 4 deletions
diff --git a/etc/inc/openvpn.inc b/etc/inc/openvpn.inc
index 12da61b..7ee3d5d 100644
--- a/etc/inc/openvpn.inc
+++ b/etc/inc/openvpn.inc
@@ -47,15 +47,15 @@ require_once('globals.inc');
 require_once('pfsense-utils.inc');
 require_once('util.inc');
 
-$openvpn_prots = array( "UDP", "TCP");
+$openvpn_prots = array("UDP", "TCP");
 
 $openvpn_auth_methods = array(
 	'pki' => "Public Key Infrastructure",
 	'shared_key' => "Pre Shared Key");
 
-function openvpn_create_dhparams() {
+function openvpn_create_dhparams($bits) {
 
-	$fp = popen("/usr/bin/openssl dhparam 1024", "r");
+	$fp = popen("/usr/bin/openssl dhparam {$bits}", "r");
 	if (!$fp)
 		return false;
 
@@ -529,7 +529,7 @@ function openvpn_resync_all() {
 
 	if (!$config['openvpn']['dh-parameters']) {
 		echo "Configuring OpenVPN Parameters ...\n";
-		$dh_parameters = openvpn_create_dhparams();
+		$dh_parameters = openvpn_create_dhparams(2048);
 		$dh_parameters = base64_encode($dh_parameters);
 		$config['openvpn']['dh-parameters'] = $dh_parameters;
 		write_config();
author	Matthew Grooms <mgrooms@pfsense.org>	2008-09-04 17:13:14 +0000
committer	Matthew Grooms <mgrooms@pfsense.org>	2008-09-04 17:13:14 +0000
commit	8411b218e6e656767ad9378f3b11e9110067e8a1 (patch)
tree	67bdc8e77a2ecb7bda137a701d7e33a6c5200f38 /etc/inc/openvpn.inc
parent	a5d223c6566c8fc6aa1adbed52dd66c97167fcec (diff)
download	pfsense-8411b218e6e656767ad9378f3b11e9110067e8a1.zip pfsense-8411b218e6e656767ad9378f3b11e9110067e8a1.tar.gz