Getting SSL to work with INN
Toon van der Pas
toon at hout.vanvergehaald.nl
Fri Sep 10 22:22:26 UTC 2004
For SSL-secured client NNTP session I run a stand-alone nnrpd daemon.
It is started up at boot time from a separate init script.
I give it the following commandline options:
nnrpd -D -S -p 563 -c /usr/local/news/etc/readers-ssl.conf
As you see I also give it it's own readers.conf file.
Regards,
Toon.
On Thu, Sep 09, 2004 at 11:10:08PM -0400, Forrest Aldrich wrote:
> I've read through what I could find in the users archive, and on the
> net, and the manpages.
>
> It seems vague about how to get nntps running properly.
>
> I followed the instructions to generate a certificate (presumed
> self-signed). It seems there are several options in sasl.conf. This is
> what I have:
>
> tls_ca_path: /usr/local/news/lib
> tls_cert_file: /usr/local/news/lib/cert.pem
> tls_key_file: /usr/local/news/lib/cert.pem
> tls_ca_file: /usr/local/news/lib/cert.pem
>
> But some of the vague documentation suggests I might need to create an
> rc.news.local script and put nnrpd -S in there somewhere to get SSL
> working?
>
> Thanks.
--
"Debugging is twice as hard as writing the code in the first place.
Therefore, if you write the code as cleverly as possible, you are,
by definition, not smart enough to debug it." - Brian W. Kernighan
More information about the inn-workers
mailing list