1 diff -ur stunnel-4.30/tools/stunnel.conf-sample.in stunnel-4.30.new/tools/stunnel.conf-sample.in
2 --- stunnel-4.30/tools/stunnel.conf-sample.in 2010-01-18 14:17:49.000000000 +0100
3 +++ stunnel-4.30.new/tools/stunnel.conf-sample.in 2010-01-21 15:17:41.173740613 +0100
5 ; Certificate/key is needed in server mode and optional in client mode
6 ; The default certificate is provided only for testing and should not
7 ; be used in a production environment
8 -cert = @prefix@/etc/stunnel/mail.pem
9 -;key = @prefix@/etc/stunnel/mail.pem
10 +cert = /etc/stunnel/mail.pem
11 +;key = /etc/stunnel/mail.pem
13 ; Security enhancements for UNIX systems - comment them out on Win32
14 ; for chroot a copy of some devices and files is needed within the jail
15 -chroot = @prefix@/var/lib/stunnel/
17 -setgid = @DEFAULT_GROUP@
18 +;chroot = /var/lib/stunnel/
21 ; PID is created inside the chroot jail
23 +pid = /var/run/stunnel/stunnel.pid
25 ; Disable support for insecure SSLv2 protocol
28 ; CApath is located inside chroot jail
30 ; It's often easier to use CAfile
31 -;CAfile = @prefix@/etc/stunnel/certs.pem
32 +CAfile = /etc/stunnel/certs.pem
33 ; Don't forget to c_rehash CRLpath
34 ; CRLpath is located inside chroot jail
36 ; Alternatively CRLfile can be used
37 -;CRLfile = @prefix@/etc/stunnel/crls.pem
38 +CRLfile = /etc/stunnel/crls.pem
40 ; Debugging stuff (may useful for troubleshooting)
44 ; service-level configuration