Want more timely Centmin Mod News Updates?
Become a Member

Beta Branch add optional SELFSIGNEDSSL_ECDSA='y' support in 123.09beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, Mar 16, 2020.

  1. eva2000

    eva2000 Administrator Staff Member

    47,837
    10,910
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,948
    Local Time:
    11:13 PM
    Nginx 1.21.x
    MariaDB 10.x
    add optional SELFSIGNEDSSL_ECDSA='y' support in 123.09beta01

    Self-signed SSL certificates generated by default on Centmin Mod Nginx HTTPS vhost sites are by default created using common RSA 2048bit SSL certificates. The more performant ECC 256bit ECDSA SSL certificates are now supported for automated self-signed SSL certificates if you set SELFSIGNEDSSL_ECDSA='y' in persistent config file /etc/centminmod/custom_config.inc prior to Centmin Mod Nginx vhost HTTPS creation via centmin.sh menu option 2, 22 or nv command line. Note these are untrusted ECC 256bit ECDSA self-signed SSL certificates not trusted in web browsers but for local dev testing. They can also be used if you want to use Cloudflare in front of the site with Cloudflare Strict SSL (non-strict), which allows Cloudflare to communicate with your Centmin Mod Nginx HTTPS site via ECDSA based SSL certs which is more performant than RSA 2048bit SSL certificates.

    Continue reading...


    123.09beta01 branch