mirror of
https://github.com/pivpn/pivpn.git
synced 2024-12-22 04:40:16 +00:00
Merge pull request #104 from redfast00/feature/download-dh
Added option to download DH parameters
This commit is contained in:
commit
eba2d80bf3
1 changed files with 6 additions and 0 deletions
|
@ -743,8 +743,14 @@ confOpenVPN() {
|
||||||
# Build the server
|
# Build the server
|
||||||
${SUDOE} ./build-key-server --batch $SERVER_NAME
|
${SUDOE} ./build-key-server --batch $SERVER_NAME
|
||||||
|
|
||||||
|
if ( ("$ENCRYPT" >= 4096) && whiptail --backtitle "Setup OpenVPN" --title "Diffie-Hellman Parameters" --defaultno --yesno "Generating Diffie-Hellman parameters for a $ENCRYPT-bits key might take a long time on a Raspberry Pi. Do you want to download them? (If you're paranoid, choose 'No')" $r $c)
|
||||||
|
then
|
||||||
|
# Downloading parameters, $KEY_DIR and $KEY_SIZE get set by sourcing ./vars
|
||||||
|
${SUDOE} curl "https://2ton.com.au/dhparam/${ENCRYPT}" -o "${KEY_DIR}/dh${KEY_SIZE}.pem"
|
||||||
|
else
|
||||||
# Generate Diffie-Hellman key exchange
|
# Generate Diffie-Hellman key exchange
|
||||||
${SUDOE} ./build-dh
|
${SUDOE} ./build-dh
|
||||||
|
fi
|
||||||
|
|
||||||
# Generate static HMAC key to defend against DDoS
|
# Generate static HMAC key to defend against DDoS
|
||||||
${SUDOE} openvpn --genkey --secret keys/ta.key
|
${SUDOE} openvpn --genkey --secret keys/ta.key
|
||||||
|
|
Loading…
Reference in a new issue