Pi-hole/pivpn
Pi-hole/pivpn
1
0
Fork 0
mirror of https://github.com/pivpn/pivpn.git synced 2024-10-18 13:43:32 +00:00
Code Issues Projects Releases Packages Wiki Activity

Randomize DH params fetched from 2ton.com.au

Browse source 
Fetch random DH params from the last 128 generated by 2ton.com.au. This
will reduce the likelihood that multiple installs in short period of
time will share the same DH params.
This commit is contained in:
Shaun Grady 2016-10-20 16:21:28 -07:00
parent 7ac0a3aada
commit b03cb8753f
No known key found for this signature in database
GPG key ID: D5BDB02BC9A47E5A
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
auto_install/install.sh
View file

@ -746,7 +746,8 @@ confOpenVPN() {
if ([ "$ENCRYPT" -ge "4096" ] && whiptail --backtitle "Setup OpenVPN" --title "Diffie-Hellman Parameters" --defaultno --yesno "Generating Diffie-Hellman parameters for a $ENCRYPT-bits key might take a long time on a Raspberry Pi. Do you want to download them? (If you're paranoid, choose 'No')" $r $c)
then
# Downloading parameters, $KEY_DIR and $KEY_SIZE get set by sourcing ./vars
${SUDOE} curl "https://2ton.com.au/dhparam/${ENCRYPT}" -o "${KEY_DIR}/dh${KEY_SIZE}.pem"
RANDOM_INDEX=$(( RANDOM % 128 ))
${SUDOE} curl "https://2ton.com.au/dhparam/${ENCRYPT}/${RANDOM_INDEX}" -o "${KEY_DIR}/dh${KEY_SIZE}.pem"
else
# Generate Diffie-Hellman key exchange
${SUDOE} ./build-dh