Tech/HowTo/Diffie-Hellman
Jump to navigation
Jump to search
Diffie-Hellman forward secret keys are important for webhosting and various other uses but often the generation will consume all the resources of the host so be careful.
openssl dhparam -out dhparams.pem 2048
or
openssl dhparam -out dhparams.pem 4096
or to limit resources on production hardware
systemd-run --user --scope -p CPUQuota=20% openssl dhparam -out dhparams.pem 4096