Insecure default values for user certificates created via User Manager
When creating a user certificate for a new user under System > User Manager (system_usermanager.php) the default values for Key Length and Digest Algorithm are insecure.
Key Length should default to
Digest Algorithm should default to
This will match the default values on system_certmanager.php.
Updated by Danilo Zrenjanin 10 months ago
- Status changed from Feedback to Resolved
Tested on the latest snapshot.
It looks fine now. When creating a new user certificate under System > User Manager:
The Key Length default value is 2048
The Digest Algorithm default value is sha256