DirectAdmin Knowledge Base and Support

DirectAdmin is a web panel for a simple administration of both virtual and dedicated servers. DirectAdmin is faster, safe and more powerful than any other CP. And we know how to customize and support it.

How-to create Diffie-Hellman (DH) 2048 bit keys for nginx and nginx_apache

| 01:48:55 15.06.2015

Diffie-Hellman key exchange is a popular cryptographic algorithm that allows Internet protocols to agree on a shared key and negotiate a secure connection. It is fundamental to many protocols including HTTPS, SSH, IPsec, SMTPS, and protocols that rely on TLS.

You can use any of the following guides to use either 2048 or 4096 bit key:

Creating 2048 bit key:

openssl dhparam -out /etc/nginx/ssl.crt/server.dh_pem 2048;
echo "ssl_dhparam /etc/nginx/ssl.crt/server.dh_pem;" >> /etc/nginx/nginx-includes.conf
/etc/init.d/nginx restart

Creating 4096 bit key:

openssl dhparam -out /etc/nginx/ssl.crt/server.dh_pem 4096;
echo "ssl_dhparam /etc/nginx/ssl.crt/server.dh_pem;" >> /etc/nginx/nginx-includes.conf
/etc/init.d/nginx restart

This is going to take a long time

About Us
We are a team of professionals, and specialize in installation, configuring and managing of remote virtual and dedicated servers powered by Linux/Unix-like OS with DirectAdmin. We support various sets of software, including web-servers Apache, Nginx; internet domain name servers Bind, PowerDNS; mail-servers with POP3, IMAP and SMTP, FTP-servers, etc. After years of working through the most complex server challenges our team has gathered valuable experience and universal solutions suitable for everyday tasks. We are here to lend you a helping hand and take care of your servers in order to let you have enough time to do more of what you love.

All of the information and data on this site is for informational purposes only and is provided for the convenience of the user.
Powered by: Amiro.CMS - Free edition