Increase DKIM key length to 2048

Currently MiaB creates 1024 bit keys which is seen as a minimum standard by several providers such as Google who already uses a 2048 bit key. Increasing the keysize beyond 2048 is an issue as it often goes beyond supported DNS record sizes.
2015-06-24 18:49:19 -04:00 · 2015-06-24 18:49:19 -04:00 · ef6a17d4a6
commit ef6a17d4a6
parent 17a149947a
1 changed files with 1 additions and 1 deletions
--- a/setup/dkim.sh
+++ b/setup/dkim.sh
@ -41,7 +41,7 @@ fi
 # entry which we'll want to include in our DNS setup.
 if [ ! -f "$STORAGE_ROOT/mail/dkim/mail.private" ]; then
 	# Should we specify -h rsa-sha256?
-	opendkim-genkey -r -s mail -D $STORAGE_ROOT/mail/dkim
+	opendkim-genkey -b 2048 -r -s mail -D $STORAGE_ROOT/mail/dkim
 fi

 # Ensure files are owned by the opendkim user and are private otherwise.