From 774c9a3a1f97de84ed44d4239b36f64f37381975 Mon Sep 17 00:00:00 2001
From: demlasjr <demlasjr@yahoo.com>
Date: Wed, 19 Mar 2014 00:39:40 +0100
Subject: [PATCH] Default DKIM keys with 1024-bit instead 512-bit

Seems like Google is not very happy with the 512-bit. There are many news and blogs posts about it.
Example: http://blog.wordtothewise.com/2012/11/gmail-sending-out-warnings-for-512-bit-dkim-keys/

I personally tested it with 1024-bit and 2048-bit and everything is working just fine.
---
 func/rebuild.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/func/rebuild.sh b/func/rebuild.sh
index f69efd48f..f4eee16c5 100644
--- a/func/rebuild.sh
+++ b/func/rebuild.sh
@@ -455,7 +455,7 @@ rebuild_mail_domain_conf() {
         U_MAIL_DKMI=$((U_MAIL_DKMI + 1))
         pem="$USER_DATA/mail/$domain.pem"
         pub="$USER_DATA/mail/$domain.pub"
-        openssl genrsa -out $pem 512 &>/dev/null
+        openssl genrsa -out $pem 1024 &>/dev/null
         openssl rsa -pubout -in $pem -out $pub &>/dev/null
         cp $pem $HOMEDIR/$user/conf/mail/$domain/dkim.pem