From c1f35d258781400870fd681fabcaa13b2820bf7d Mon Sep 17 00:00:00 2001
From: Patrick <patrickpluto@proton.me>
Date: Fri, 15 Nov 2024 21:19:24 +0100
Subject: [PATCH] ca fix

---
 configs/scripts/ca.sh | 4 ++--
 resources/ca.cnf      | 3 ---
 2 files changed, 2 insertions(+), 5 deletions(-)

diff --git a/configs/scripts/ca.sh b/configs/scripts/ca.sh
index bbde892..f5f75d1 100755
--- a/configs/scripts/ca.sh
+++ b/configs/scripts/ca.sh
@@ -6,11 +6,11 @@
 trap '' SIGINT SIGTERM
 rm /etc/nginx/sites-enabled/default
 tar -xzf /root/deployment.tar.gz -C /root
-openssl genrsa -out /root/ca.key 2048
+openssl genrsa -out /root/ca.key 4096
 chmod 400 /root/ca.key
 mkdir -p /etc/ssl/certs/
 mkdir -p /etc/ssl/private/
-openssl req -x509 -new -nodes -key /root/ca.key -sha256 -days 1024 -out /etc/ssl/certs/ca.crt -config /mnt/root/openssl.cnf -extensions v3_ca
+openssl req -x509 -new -nodes -key /root/ca.key -sha256 -days 1024 -out /etc/ssl/certs/ca.crt -config /root/ca.cnf
 cp /etc/ssl/certs/ca.crt /root
 cp /etc/ssl/certs/ca.crt /usr/local/share/ca-certificates/
 chown -R www-data:www-data /etc/ssl/private/
diff --git a/resources/ca.cnf b/resources/ca.cnf
index ab21ae1..6fb28b1 100644
--- a/resources/ca.cnf
+++ b/resources/ca.cnf
@@ -11,6 +11,3 @@ L  = Zurich
 O  = InterstellarNet
 OU = NONE
 CN = INTERSTELLAR
-
-[ req_ext ]
-subjectAltName = @alt_names
\ No newline at end of file