Add dhparam generation function

2025-11-04 08:02:28 +01:00 · 2023-09-10 11:17:10 +02:00
parent 858f17c03f
commit 5802c2c043
1 changed files with 12 additions and 1 deletions
--- a/src/functions.sh
+++ b/src/functions.sh
@@ -6,4 +6,15 @@ LXC_RANDOMPWD=32
 random_password() {
    set +o pipefail
    LC_CTYPE=C tr -dc 'a-zA-Z0-9' < /dev/urandom 2>/dev/null | head -c${LXC_RANDOMPWD}
-}
+}
+
+generate_dhparam() {
+    openssl dhparam -out /etc/nginx/dhparam.pem 2048
+    cat << EOF > /etc/cron.weekly/generate-dhparams
+#!/bin/bash
+openssl dhparam -out /etc/nginx/dhparam.gen 4096 > /dev/null 2>&1
+mv /etc/nginx/dhparam.gen /etc/nginx/dhparam.pem
+systemctl restart nginx
+EOF
+    chmod +x /etc/cron.weekly/generate-dhparams
+}