From: Michael Tremer <michael.tremer@ipfire.org>
Date: Thu, 25 Jul 2013 14:46:54 +0000 (+0200)
Subject: vpnmain.cgi: Use MODP groups with smaller key lengths by default.
X-Git-Url: http://git.ipfire.org/?p=people%2Fteissler%2Fipfire-2.x.git;a=commitdiff_plain;h=aea35c5aca126e10d6aeb803b5c929b136ca9f97;ds=sidebyside

vpnmain.cgi: Use MODP groups with smaller key lengths by default.

https://bugzilla.ipfire.org/show_bug.cgi?id=10396
---

diff --git a/html/cgi-bin/vpnmain.cgi b/html/cgi-bin/vpnmain.cgi
index 2e3ef9a57..58645c39c 100644
--- a/html/cgi-bin/vpnmain.cgi
+++ b/html/cgi-bin/vpnmain.cgi
@@ -1840,7 +1840,7 @@ END
 	#use default advanced value
 	$cgiparams{'IKE_ENCRYPTION'} = 'aes256|aes192|aes128|3des';	#[18];
 	$cgiparams{'IKE_INTEGRITY'}  = 'sha2_256|sha|md5';	#[19];
-	$cgiparams{'IKE_GROUPTYPE'}  = '8192|6144|4096|3072|2048|1536|1024';		#[20];
+	$cgiparams{'IKE_GROUPTYPE'}  = '4096|3072|2048|1536|1024';		#[20];
 	$cgiparams{'IKE_LIFETIME'}   = '3';		#[16];
 	$cgiparams{'ESP_ENCRYPTION'} = 'aes256|aes192|aes128|3des';	#[21];
 	$cgiparams{'ESP_INTEGRITY'}  = 'sha2_256|sha1|md5';	#[22];