Promijenjen postinst dodan DH od 2048 bita

diff --git a/debian/changelog b/debian/changelog
index 4365b2e..c1bdc1d 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,8 @@
 bacula-cn (20210226+cn9u2) unstable; urgency=medium
 
-  * Dodan cronjob i skripta koji obavještava o isteklom lokalnom certifikatu 
+  * Dodana skripta koji obavještava o isteklom lokalnom certifikatu
+  * Diffie-Hellman ključ povećan na 2048 bita, jer openssl na busteru tako
+    zahtijeva
 
  -- Zeljko Boros <Zeljko.Boros@carnet.hr>  Wed, 10 Mar 2021 18:45:05 +0100  
 

diff --git a/debian/postinst b/debian/postinst
index d0f161d..4ca4ab5 100644 (file)
--- a/debian/postinst
+++ b/debian/postinst
@@ -52,7 +52,7 @@ Director {
   # directors to verify the authenticity of this file daemon
   TLS Certificate = "/etc/bacula/bacula-fd.pem"
   TLS Key = "/etc/bacula/bacula-fd.pem"
-  TLS DH File = "/etc/bacula/dh1024.pem"
+  TLS DH File = "/etc/bacula/dh2048.pem"
 }
 
 #
@@ -131,7 +131,7 @@ EOF
 }
 
 generate_dh() {
-    DH_FILE=/etc/bacula/dh1024.pem
+    DH_FILE=/etc/bacula/dh2048.pem
 
     if [ -s $DH_FILE ]; then
         echo $DH_FILE already exists, skipping.
@@ -139,7 +139,9 @@ generate_dh() {
         umask 077
 
         echo Generating $DH_FILE
-        openssl dhparam -out $DH_FILE -5 1024
+        ###openssl dhparam -out $DH_FILE -5 1024
+        openssl dhparam -out $DH_FILE -2 2048
+       
     fi
 }