Am I looking at (or doing) something wrong, or is the CA Certificate still 1024-bit in Zentyal 3.0?
I posted something about this being a security issue with version 2.2, and was told the size was being increased with the next version. I patched the CA.pm file (/usr/share/perl5/EBox/CA.pm) with a single line of code (between 2070 and 2071), and it's now generating all rsa-4096 certificates (until the file reverts). If it really is still 1024-bit, It would be nice if some fix would make it into the official code and get rolled out with the next update of the web-ui.
I forget how to generate an actual patch. This should be close enough for a human, but if someone wants it, I'll do the work for a real patch file.
$cmd .= qq{-keyout '$args{privKey}' };
+ $cmd .= ' -newkey rsa:4096 ';
if (defined($args{keyPassword})) {