updated DHparam preamble

This commit is contained in:
Asif Bacchus 2019-01-07 21:41:52 -07:00
parent 4e37d7bb31
commit 7b91963f7f

View File

@ -433,11 +433,14 @@ fi
# dhparam: get location of DH Parameters file
if [ "${useSSL}" -eq 1 ]; then
echo -e "\n${mag}Having your own unique Diffie-Hellman Parameters file makes your SSL"
echo "communication more secure by helping to generate unique safe large prime"
echo "communication more secure by pre-generating safe large prime and generator"
echo "numbers. You shouldn't use any pre-installed dhparam.pem files. You should"
echo "always generate your own. If you haven't done that already and would like this"
echo -e "script to do it for you, please type ${warn}generate${mag} at the prompt instead"
echo -e "of a path${norm}\n"
echo "always generate your own."
echo -e "\nIf you haven't done that already and would like this script to do it for"
echo -e "you, please type ${warn}generate${mag} at the prompt instead of a path."
echo "Please note that although this process uses DSA-primes to speed things up"
echo "without sacrificing security, the process may still take up to 20+ minutes"
echo -e "depending on your hardware.${norm}\n"
while true; do
read -p "What is the path to your DH Parameters file? (default: /etc/ssl/certs/dhparam.pem) " inputDHPath
case "${inputDHPath}" in