starred/dehydrated
1
0
Fork 0
mirror of https://github.com/dehydrated-io/dehydrated.git synced 2026-01-13 15:13:33 +01:00
Code Issues 79 Packages Projects Releases 10 Wiki Activity

Add support for appending custom EC/DH parameters #158

New Issue
Closed
opened 2025-12-29 00:26:15 +01:00 by adam · 3 comments
adam commented 2025-12-29 00:26:15 +01:00
Owner
Copy Link

Originally created by @lumag on GitHub (Nov 13, 2016).

According to mod_ssl documentation it is possible to instruct Apache2 to use custom DH parameters or EC curve by appending that data to first certificate specified by SSLCertificateFile. Please add support for adding such data. Thanks!

Originally created by @lumag on GitHub (Nov 13, 2016). According to [mod_ssl documentation](https://httpd.apache.org/docs/2.4/mod/mod_ssl.html#sslcertificatefile) it is possible to instruct Apache2 to use custom DH parameters or EC curve by appending that data to first certificate specified by `SSLCertificateFile`. Please add support for adding such data. Thanks!
adam closed this issue 2025-12-29 00:26:15 +01:00
adam commented 2025-12-29 00:26:16 +01:00
Author
Owner
Copy Link

@leonklingele commented on GitHub (Nov 13, 2016):

Why not use the dedicated Apache directives for doing that?
You can specify the curve to use for ECDH via: SSLOpenSSLConfCmd ECDHParameters [curve-name]
and specify the parameters for DH via: SSLOpenSSLConfCmd DHParameters /path/to/dhparams.pem

@leonklingele commented on GitHub (Nov 13, 2016): Why not use the dedicated Apache directives for doing that? You can specify the curve to use for ECDH via: `SSLOpenSSLConfCmd ECDHParameters [curve-name]` and specify the parameters for DH via: `SSLOpenSSLConfCmd DHParameters /path/to/dhparams.pem`
adam commented 2025-12-29 00:26:16 +01:00
Author
Owner
Copy Link

@lumag commented on GitHub (Nov 13, 2016):

This directive is not available with OpenSSL < 1.0.2 (and that is not the case e.g. for Debian Jessie).

@lumag commented on GitHub (Nov 13, 2016): This directive is not available with OpenSSL < 1.0.2 (and that is not the case e.g. for Debian Jessie).
adam commented 2025-12-29 00:26:17 +01:00
Author
Owner
Copy Link

@welwood08 commented on GitHub (Nov 16, 2016):

This is already possible using the deploy_cert hook. Just append what you need to the cert file before you deploy it to apache.

@welwood08 commented on GitHub (Nov 16, 2016): This is already possible using the deploy_cert hook. Just append what you need to the cert file before you deploy it to apache.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Complicated
bug
enhancement
help wanted
pull-request
Mirrored from GitHub Pull Request
 suggestions wanted
testing
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
adam
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/dehydrated#158
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?