I am getting the dh key too small error OpenSSL: error:1408518A:SSL routines:ssl3_ctx_ctrl:dh key too smallafter migrating my OpenVPN server from an older system. However, the standard (low security) fix, commenting out DEFAULT:@SECLEVEL=2 or changing it to 1 in the openssl.cnf file in /etc/ssl, does not work, and my OpenVPN service still fails to start.
Examples of this proposed fix (not working for me): OpenSSL DH Key Too Small Error What could cause "dh key too small" error?
What could I do?
EDIT: removing the openssl.cnf likewise doesn't fix the issue, so it doesn't appear that that file is being used at all.
