From 3cfbe05aff59fccc9adb1da154a5de9f262349d7 Mon Sep 17 00:00:00 2001
From: Sam Dodrill <shadow.h511@gmail.com>
Date: Wed, 1 Jan 2014 04:03:45 -0800
Subject: [PATCH] Bump up SSL cert generation strength

---
 tools/genssl.sh.in | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/tools/genssl.sh.in b/tools/genssl.sh.in
index 2e65f65..11b4c36 100644
--- a/tools/genssl.sh.in
+++ b/tools/genssl.sh.in
@@ -4,10 +4,10 @@ exec_prefix="@exec_prefix@"
 sysconfdir="@sysconfdir@"
 
 echo "Generating self-signed certificate .. "
-openssl req -x509 -nodes -newkey rsa:1024 -keyout "${sysconfdir}"/ssl.key -out "${sysconfdir}"/ssl.cert
+openssl req -x509 -nodes -newkey rsa:2048 -keyout "${sysconfdir}"/ssl.key -out "${sysconfdir}"/ssl.cert
 
 echo "Generating Diffie-Hellman file for secure SSL/TLS negotiation .. "
-openssl dhparam -out "${sysconfdir}"/dh.pem 1024
+openssl dhparam -out "${sysconfdir}"/dh.pem 2048
 
 # If sysconfdir is relative to prefix, make the path relative. I.e.,
 # prefix=/usr and sysconfdir=/etc -> relative_sysconfdir=/etc,