Changeset 9d9b093 in mod_gnutls for README


Ignore:
Timestamp:
Jan 11, 2013, 12:56:51 AM (8 years ago)
Author:
Daniel Kahn Gillmor <dkg@…>
Branches:
debian/master, debian/stretch-backports, jessie-backports, upstream
Children:
2dd044f, 8ce897a
Parents:
8df5b25
Message:

Imported Upstream version 0.5.1

File:
1 edited

Legend:

Unmodified
Added
Removed
  • README

    r8df5b25 r9d9b093  
    5555
    5656    # This is the Private key for your server.
    57     GnuTLSKeyFile conf/server.key
     57    GnuTLSX509KeyFile conf/server.key
    5858
    5959    # This is the Server Certificate. 
    60     GnuTLSCertificateFile conf/server.cert
     60    GnuTLSX509CertificateFile conf/server.cert
    6161</VirtualHost>
    62 
    6362
    6463# a more advanced configuration
     
    7473        GNUTLSExportCertificates on
    7574
    76         GnuTLSCertificateFile /etc/apache2/server-cert.pem
    77         GnuTLSKeyFile /etc/apache2/server-key.pem
     75        GnuTLSX509CertificateFile /etc/apache2/server-cert.pem
     76        GnuTLSX509KeyFile /etc/apache2/server-key.pem
    7877
    7978# To enable SRP you must have these files installed. Check the gnutls srptool.
     
    8584# contains the CAs to verify client certificates.
    8685        GnuTLSClientVerify request
    87         GnuTLSClientCAFile ca.pem
     86        GnuTLSX509CAFile ca.pem
    8887        ...
    8988</VirtualHost>
     89
     90# A setup for OpenPGP and X.509 authentication
     91<VirtualHost 1.2.3.4:443>
     92        Servername crystal.lan:443
     93        GnuTLSEnable on
     94        GnuTLSPriorities NORMAL:+COMP-NULL
     95
     96# setup the openpgp keys
     97        GnuTLSPGPCertificateFile /etc/apache2/test.pub.asc
     98        GnuTLSPGPKeyFile /etc/apache2/test.sec.asc
     99
     100# and the X.509 keys
     101        GnuTLSCertificateFile /etc/apache2/server-cert.pem
     102        GnuTLSKeyFile /etc/apache2/server-key.pem
     103        GnuTLSClientVerify ignore
     104
     105# To avoid using the default DH params
     106        GnuTLSDHFile /etc/apache2/dh.pem
     107
     108# these are only needed if GnuTLSClientVerify != ignore
     109        GnuTLSClientCAFile ca.pem
     110        GnuTLSPGPKeyringFile /etc/apache2/ring.asc
     111</VirtualHost>
Note: See TracChangeset for help on using the changeset viewer.