projects / mirror / dsa-puppet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Add a start of weasel's stunnel puppetry
[mirror/dsa-puppet.git] / modules / stunnel4 / templates / server.conf.erb
diff --git a/modules/stunnel4/templates/server.conf.erb b/modules/stunnel4/templates/server.conf.erb
new file mode 100644 (file)
index 0000000..59334c0
--- /dev/null
+++ b/modules/stunnel4/templates/server.conf.erb
@@ -0,0 +1,32 @@
+##
+## THIS FILE IS UNDER PUPPET CONTROL. DON'T EDIT IT HERE.
+## USE: git clone git+ssh://$USER@puppet.debian.org/srv/puppet.debian.org/git/dsa-puppet.git
+##
+
+cert = /etc/exim4/ssl/thishost.crt
+key = /etc/exim4/ssl/thishost.key
+
+; Some security enhancements for UNIX systems - comment them out on Win32
+chroot = /var/run/stunnel4
+setuid = stunnel4
+setgid = stunnel4
+; PID is created inside chroot jail
+pid = /stunnel-<%= name %>.pid
+
+verify = 2
+CAfile = /etc/exim4/ssl/ca.crt
+CRLfile = /etc/exim4/ssl/ca.crl
+
+; Some debugging stuff useful for troubleshooting
+debug = notice
+; don't use a file, use syslog
+; output = /var/log/stunnel4/stunnel.log
+
+client = no
+
+[<%= name %>]
+accept = <%= accept %>
+connect = <%= connect %>
+local = <%= local %>
+
+; vim:ft=dosini
Unnamed repository; edit this file 'description' to name the repository.