From 01f601c8c2b6cfdc389eaaccede163bb23eb326a Mon Sep 17 00:00:00 2001
From: Thomas Preud'homme <robotux@celest.fr>
Date: Wed, 30 Apr 2014 00:24:58 +0800
Subject: [PATCH] [ssl_mgmt] Use SHA1 as default hash instead of MD5

---
 ssl_mgmt/openssl.cnf.in | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ssl_mgmt/openssl.cnf.in b/ssl_mgmt/openssl.cnf.in
index f5850f1..91deca5 100644
--- a/ssl_mgmt/openssl.cnf.in
+++ b/ssl_mgmt/openssl.cnf.in
@@ -15,7 +15,7 @@ new_certs_dir = $dir/newcerts
 certificate = $dir/certs/ca-cert.pem
 private_key = $dir/private/ca-key.pem
 default_days = @LENGTH@ # Certificates are signed for default_days days
-default_md = md5
+default_md = sha1
 preserve = no
 email_in_dn = no
 nameopt = default_ca
@@ -37,7 +37,7 @@ default_bits = 2048
 # Name of the generated key (specify it as a CLI argument if different):
 default_keyfile = newkeys/key.pem
 # Hash algorithm:
-default_md = md5
+default_md = sha1
 # Authorised characters:
 string_mask = nombstr
 prompt = no