Join the community today
Register Now

Master Branch add optional SELFSIGNEDSSL_ECDSA='y' support in 123.09beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, Mar 24, 2020.

  1. eva2000

    eva2000 Administrator Staff Member

    May 24, 2014
    Brisbane, Australia
    Local Time:
    7:30 PM
    Nginx 1.17.x
    MariaDB 5.5/10.x
    add optional SELFSIGNEDSSL_ECDSA='y' support in 123.09beta01

    Self-signed SSL certificates generated by default on Centmin Mod Nginx HTTPS vhost sites are by default created using common RSA 2048bit SSL certificates. The more performant ECC 256bit ECDSA SSL certificates are now supported for automated self-signed SSL certificates if you set SELFSIGNEDSSL_ECDSA='y' in persistent config file /etc/centminmod/ prior to Centmin Mod Nginx vhost HTTPS creation via menu option 2, 22 or nv command line. Note these are untrusted ECC 256bit ECDSA self-signed SSL certificates not trusted in web browsers but for local dev testing. They can also be used if you want to use Cloudflare in front of the site with Cloudflare Strict SSL (non-strict), which allows Cloudflare to communicate with your Centmin Mod Nginx HTTPS site via ECDSA based SSL certs which is more performant than RSA 2048bit SSL certificates.

    Continue reading...

    Centmin Mod Github Master branch

    Master branch is where most recent commits are made as at May 24, 2015.