Hi, > Actually... > > We all should be using SHA-256 and not SHA-1 for new installations. 2.2.x is SHA256 - has been for a while now (probably a patch I submitted or after some feedback I left ;-) ) ca.cnf:default_md = sha256 client.cnf:default_md = sha256 server.cnf:default_md = sha256 alan