https://bz.apache.org/bugzilla/show_bug.cgi?id=65764
--- Comment #3 from Yann Ylavic <[email protected]> --- I can't tell about the potential SSLOpenSSLConfCmd issue, though there is another way to use specific DH-parameters, namely appending the dhparams to the SSLCertificateFile (documented in [1]). Does something like the below work for your case still? # cp -a /etc/acme-sh/domain.net_ecc/fullchain.cer /etc/acme-sh/domain.net_ecc/fullchain+ffdhe4096.cer # cat /etc/ssl/misc/ffdhe4096.pem >> /etc/acme-sh/domain.net_ecc/fullchain+ffdhe4096.cer And then these changes to your configuration: - SSLOpenSSLConfCmd DHParameters /etc/ssl/misc/ffdhe4096.pem - SSLCertificateFile /etc/acme-sh/domain.net_ecc/fullchain.cer + SSLCertificateFile /etc/acme-sh/domain.net_ecc/fullchain+ffdhe4096.cer [1] https://httpd.apache.org/docs/2.4/mod/mod_ssl.html#sslcertificatefile -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
