OK, if you want to then try this.
Note. To upgrade the encryption strength you have to create a new CA, and then all new certificates. There is no easy way to convert existing certificates.
So be prepared before you embark on this.
First, uninstall old version. This new version will try and backup your certificates if they exist.
If you want to keep them then you can also do this manually first:
cp -r /opt/phpki/phpki-store /opt/phpki/phpki-store.backup
Now:
yum remove phpki
You may need a reboot to clear up.
Add my testing repo.
BEWARE.
Do NOT try and do a general 'upgrade' from this repo. It may break your machine!!!!
Just install as we instruct. If this tests OK it will go into smecontribs fairly soon.
You can manually grab a copy for a local install if you want:
https://www.reetspetit.com/smetest/6/repoview/phpki.htmlThen something like this:
yum --enablerepo=epel, smecontribs localinstall phpki-0.83-9.el6.sme.noarch.rpm
Otherwise use my test repo:
db yum_repositories set reetpTest repository \
BaseURL https://www.reetspetit.com/smetest/\$releasever \
EnableGroups no \
GPGCheck no \
Name "ReetP Repo" \
GPGKey https://www.reetspetit.com/RPM-GPG-KEY \
Visible yes \
status disabled
signal-event yum-modify
config set UnsavedChanges no
Now install:
yum --enablerepo=reetpTest,smecontribs,epel install phpki
You may see a warning about unable to write 'random state' but you can ignore it.
signal-event post-upgrade; signal-event reboot
Go to Server-manager
Create your CA certificate with a password.
Get your DH key, and generate your certificates.
The DH key will now be 2048 bits.
Really we should set everything to default to 4096 - at least make the CA and certs 4096
Let us know how you get along.