mirror/infrastructure
1
1
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/infrastructure.git synced 2025-01-18 08:06:16 +01:00
Code Issues
incease-debuginfo-ftpdir
infrastructure/roles/certificate/defaults/main.yml
Jan Alexander Steffens (heftig) fb1f03549c certbot: Use ECDSA (P-256) certificates, not RSA 
certbot switched to ECDSA by default about two years ago, following
[recommended practices][1].

We are currently using RSA with 4096 bits, which is extremely slow to
sign. Using ECDSA should give us a nice speedup.

[1]: https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28recommended.29
2024-07-20 11:20:10 +00:00

3 lines
86 B
YAML
Raw Permalink Blame History

certificate_challenge: "HTTP-01"
certificate_contact_email: "webmaster@archlinux.org"
View Git Blame Copy Permalink