From fff512e27c4248d56c94eb5ed988811ea21b9f45 Mon Sep 17 00:00:00 2001
From: Sol Jerome <solj@ices.utexas.edu>
Date: Fri, 18 Dec 2009 03:45:02 +0000
Subject: Init: Increase RSA key size to 2048 for use past 2010

See http://www.rsa.com/blog/blog_entry.aspx?id=1192 for more information.

Signed-off-by: Sol Jerome <solj@ices.utexas.edu>

git-svn-id: https://svn.mcs.anl.gov/repos/bcfg/trunk/bcfg2@5623 ce84e21b-d406-0410-9b95-82705330c041
---
 src/lib/Server/Admin/Init.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src/lib/Server/Admin/Init.py')

diff --git a/src/lib/Server/Admin/Init.py b/src/lib/Server/Admin/Init.py
index 1488301f8..d674db1bd 100644
--- a/src/lib/Server/Admin/Init.py
+++ b/src/lib/Server/Admin/Init.py
@@ -96,7 +96,7 @@ def gen_password(length):
 
 def create_key(hostname, keypath, certpath):
     """Creates a bcfg2.key at the directory specifed by keypath"""
-    kcstr = "openssl req -batch -x509 -nodes -subj '/C=US/ST=Illinois/L=Argonne/CN=%s' -days 1000 -newkey rsa:1024 -keyout %s -noout" % (hostname, keypath)
+    kcstr = "openssl req -batch -x509 -nodes -subj '/C=US/ST=Illinois/L=Argonne/CN=%s' -days 1000 -newkey rsa:2048 -keyout %s -noout" % (hostname, keypath)
     subprocess.call((kcstr), shell=True)
     ccstr = "openssl req -batch -new  -subj '/C=US/ST=Illinois/L=Argonne/CN=%s' -key %s | openssl x509 -req -days 1000 -signkey %s -out %s" % (hostname, keypath, keypath, certpath)
     subprocess.call((ccstr), shell=True)
-- 
cgit v1.2.3-1-g7c22