[Devel] changes for TLS

Cesc cesc.santa at gmail.com
Fri Oct 28 17:38:15 CEST 2005


I am not sure for openser, but in ser, disable_tls is only defined if
compiled with TLS=1 ... thus, if you add disable_tls=1 to the config,
compile without TLS (or TLS=0) ... the config won't even load.
Again, this may not be true for openser ...
 Cesc

 On 10/28/05, Klaus Darilion <klaus.mailinglists at pernau.at> wrote:
>
> Hi!
>
> I suggest the default values of disable_tls should be 1
> This allows using a TLS enabled openser with the normal config.
>
> Further, we should make an openser.cfg for the TLS version with these
> modifications:
>
> # uncomment the following lines for TLS support
> #disable_tls=0
> #tls_verify=1
> #tls_require_certificate=0
> #tls_method=TLSv1
> #tls_certificate= "/etc/openser/cert.pem"
> #tls_private_key= "/etc/openser/privkey.pem"
> #tls_ca_list= "/etc/openser/calist.pem"
>
>
> any comments? otherwise I will change it.
>
> regards
> klaus
>
> _______________________________________________
> Devel mailing list
> Devel at openser.org
> http://openser.org/cgi-bin/mailman/listinfo/devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://openser.org/pipermail/devel/attachments/20051028/88986a8a/attachment.htm


More information about the Devel mailing list