www-misc/nsopenssl/files/nsd.tcl.diff


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115

--- nsopenssl-3.0beta26.orig/nsd.tcl	2005-02-25 17:34:44.000000000 +0000
+++ nsopenssl-3.0beta26/nsd.tcl	2005-02-27 22:29:46.676169136 +0000
@@ -1,9 +1,11 @@
 ###############################################################################
 #
+# Modifications made by Gentoo Linux:
+#  * Removed 1.x and 2.x configuration examples
+#
 # Sample configurations for nsopenssl
 #
-# This file contains three sets of configuration examples, one for each of 1.x,
-# 2.x and 3.x versions of nsopenssl.
+# This file contains a single configuration example for 3.x version of nsopenssl.
 #
 # Parameters followed by the comment "# default" show the default values if you
 # don't specify that parameter.
@@ -116,98 +118,3 @@
 ns_section "ns/server/${servername}/modules"
 ...
 ns_param   nsopenssl       ${bindir}/nsopenssl${ext}
-
-
-
-###############################################################################
-#
-# nsopenssl version 2.x configuration
-#
-
-ns_section "ns/server/${servername}/module/nsopenssl"
-
-# NSD-driven connections:
-ns_param ServerPort                      $httpsport
-ns_param ServerHostname                  $hostname
-ns_param ServerAddress                   $address
-ns_param ServerCertFile                  certfile.pem
-ns_param ServerKeyFile                   keyfile.pem
-ns_param ServerProtocols                 "SSLv2, SSLv3, TLSv1"
-ns_param ServerCipherSuite               "ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"
-ns_param ServerSessionCache              false
-ns_param ServerSessionCacheID            1
-ns_param ServerSessionCacheSize          128
-ns_param ServerSessionCacheTimeout       300
-ns_param ServerPeerVerify                true
-ns_param ServerPeerVerifyDepth           3
-ns_param ServerCADir                     ca
-ns_param ServerCAFile                    ca.pem
-ns_param ServerTrace                     false
-
-# For listening and accepting SSL connections via Tcl/C API:
-ns_param SockServerCertFile              certfile.pem
-ns_param SockServerKeyFile               keyfile.pem
-ns_param SockServerProtocols             "SSLv2, SSLv3, TLSv1"
-ns_param SockServerCipherSuite           "ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"
-ns_param SockServerSessionCache          false
-ns_param SockServerSessionCacheID        2
-ns_param SockServerSessionCacheSize      128
-ns_param SockServerSessionCacheTimeout   300
-ns_param SockServerPeerVerify            true
-ns_param SockServerPeerVerifyDepth       3
-ns_param SockServerCADir                 internal_ca
-ns_param SockServerCAFile                internal_ca.pem
-ns_param SockServerTrace                 false
-
-# Outgoing SSL connections
-ns_param SockClientCertFile              clientcertfile.pem
-ns_param SockClientKeyFile               clientkeyfile.pem
-ns_param SockClientProtocols             "SSLv2, SSLv3, TLSv1"
-ns_param SockClientCipherSuite           "ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"
-ns_param SockClientSessionCache          false
-ns_param SockClientSessionCacheID        3
-ns_param SockClientSessionCacheSize      128
-ns_param SockClientSessionCacheTimeout   300
-ns_param SockClientPeerVerify            true
-ns_param SockServerPeerVerifyDepth       3
-ns_param SockClientCADir                 ca
-ns_param SockClientCAFile                ca.pem
-ns_param SockClientTrace                 false
-
-# Typically where you store your certificates
-# Defaults to $AOLSERVER/servers/${servername}/modules/nsopenssl
-ns_param ModuleDir                       /path/to/dir
-
-# OpenSSL library support:
-ns_param RandomFile                      /some/file
-ns_param SeedBytes                       1024
-
-
-###############################################################################
-#
-# DEPRECATED: nsopenssl 1.x configuration
-#
-
-ns_section "ns/server/${servername}/module/nsopenssl"   
-ns_param address                  $address
-ns_param port                     $httpsport
-ns_param hostname                 $hostname
-ns_param CertFile                 certfile.pem
-ns_param KeyFile                  keyfile.pem
-ns_param Protocol                 All
-#ns_param Protocol                 SSLv2
-#ns_param Protocol                 SSLv3
-#ns_param Protocol                 TLSv1
-ns_param CipherSuite              "ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"
-ns_param SessionCache             true
-ns_param SessionCacheSize         128
-ns_param SessionCacheTimeout      300
-ns_param ClientVerify             true
-ns_param CADir                    ca
-ns_param CAFile                   ca.pem
-ns_param Trace                    false
-ns_param RandomFile               /some/file
-
-ns_section "ns/server/${servername}/modules"
-ns_param nsopenssl    ${bindir}/nsopenssl${ext}
-