• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Issue DNSSEC Harden Digest Type?

Walter

Basic Pleskian
I have successfully implemented DNSSEC on my server. However, I don't see where I can set the "Digest Type" encryption? Here are my initial default settings from the plugin itself.

Allowed algorithms for key generation:
ECDSAP384sha384

Key Signing Key
ECDSAP384sha384
Default size 4096
rollover period 1 year

Zone Signing Key ZSK
ECDSAP384sha384
Default size 4096
rollover period 6 months

I used these same settings on the domain itself but when it created the keys, it created them with:
The algorithm as selected BUT SHA-1 and SHA-256 were the digest types that were created. I should be able to select SHA-384 as well? Where can I modify the digest type before it is created?

I'd like to increase the digest type to at least be SHA-256?
 
Back
Top