- updated to 4.38

[packages/stunnel.git] / stunnel-config.patch

diff -ur stunnel-4.30/tools/stunnel.conf-sample.in stunnel-4.30.new/tools/stunnel.conf-sample.in
--- stunnel-4.30/tools/stunnel.conf-sample.in   2010-01-18 14:17:49.000000000 +0100
+++ stunnel-4.30.new/tools/stunnel.conf-sample.in       2010-01-21 15:17:41.173740613 +0100
@@ -5,16 +5,16 @@
 ; Certificate/key is needed in server mode and optional in client mode
 ; The default certificate is provided only for testing and should not
 ; be used in a production environment
-cert = @prefix@/etc/stunnel/mail.pem
-;key = @prefix@/etc/stunnel/mail.pem
+cert = /etc/stunnel/mail.pem
+;key = /etc/stunnel/mail.pem
 
 ; Security enhancements for UNIX systems - comment them out on Win32
 ; for chroot a copy of some devices and files is needed within the jail
-chroot = @prefix@/var/lib/stunnel/
-setuid = nobody
-setgid = @DEFAULT_GROUP@
+;chroot = /var/lib/stunnel/
+setuid = stunnel
+setgid = stunnel
 ; PID is created inside the chroot jail
-pid = /stunnel.pid
+pid = /var/run/stunnel/stunnel.pid
 
 ; Disable support for insecure SSLv2 protocol
 options = NO_SSLv2
@@ -29,12 +29,12 @@
 ; CApath is located inside chroot jail
 ;CApath = /certs
 ; It's often easier to use CAfile
-;CAfile = @prefix@/etc/stunnel/certs.pem
+CAfile = /etc/stunnel/certs.pem
 ; Don't forget to c_rehash CRLpath
 ; CRLpath is located inside chroot jail
 ;CRLpath = /crls
 ; Alternatively CRLfile can be used
-;CRLfile = @prefix@/etc/stunnel/crls.pem
+CRLfile = /etc/stunnel/crls.pem
 
 ; Debugging stuff (may useful for troubleshooting)
 ;debug = 7
@@ -49,17 +49,17 @@
 
 ; service-level configuration
 
-[pop3s]
-accept  = 995
-connect = 110
-
-[imaps]
-accept  = 993
-connect = 143
-
-[ssmtp]
-accept  = 465
-connect = 25
+;[pop3s]
+;accept  = 995
+;connect = 110
+
+;[imaps]
+;accept  = 993
+;connect = 143
+
+;[ssmtp]
+;accept  = 465
+;connect = 25
 
 ;[https]
 ;accept  = 443