Changeset 1ae11c9
- Timestamp:
- 03/26/2008 05:18:33 PM (16 years ago)
- Branches:
- 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 6.3, 6.3-rc1, 6.3-rc2, 6.3-rc3, 7.10, 7.4, 7.5, 7.6, 7.6-blfs, 7.6-systemd, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, gnome, kde5-13430, kde5-14269, kde5-14686, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, krejzi/svn, lazarus, lxqt, nosym, perl-modules, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, systemd-11177, systemd-13485, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal
- Children:
- 206b7a1
- Parents:
- dd9a2ad8
- Files:
-
- 3 edited
Legend:
- Unmodified
- Added
- Removed
-
general.ent
rdd9a2ad8 r1ae11c9 45 45 <!-- End LFS versions --> 46 46 47 <!ENTITY blfs-bootscripts-version "200803 15">47 <!ENTITY blfs-bootscripts-version "20080326"> 48 48 <!ENTITY blfs-bootscripts-download "&downloads-root;/blfs-bootscripts-&blfs-bootscripts-version;.tar.bz2"> 49 49 … … 68 68 <!ENTITY mitkrb-version "1.6"> 69 69 <!ENTITY cyrus-sasl-version "2.1.22"> 70 <!ENTITY stunnel-version "4.2 0">70 <!ENTITY stunnel-version "4.21"> 71 71 <!ENTITY sudo-version "1.6.9p12"> 72 72 <!ENTITY nss-version "3.11.7"> -
introduction/welcome/changelog.xml
rdd9a2ad8 r1ae11c9 45 45 <para>March 26th, 2008</para> 46 46 <itemizedlist> 47 <listitem> 48 <para>[randy] - Updated to Stunnel-4.21.</para> 49 </listitem> 47 50 <listitem> 48 51 <para>[randy] - Added a parameter to the libgnome configure command -
postlfs/security/stunnel.xml
rdd9a2ad8 r1ae11c9 7 7 <!ENTITY stunnel-download-http "http://www.stunnel.org/download/stunnel/src/stunnel-&stunnel-version;.tar.gz"> 8 8 <!ENTITY stunnel-download-ftp "ftp://stunnel.mirt.net/stunnel/stunnel-&stunnel-version;.tar.gz"> 9 <!ENTITY stunnel-md5sum " cf9940395d3503018f721c962528d2ec">10 <!ENTITY stunnel-size "5 13KB">11 <!ENTITY stunnel-buildsize " 4.5 MB">9 <!ENTITY stunnel-md5sum "1eaec5228979beca4d548f453304e311"> 10 <!ENTITY stunnel-size "528 KB"> 11 <!ENTITY stunnel-buildsize "5 MB"> 12 12 <!ENTITY stunnel-time "0.1 SBU"> 13 13 ]> … … 61 61 </itemizedlist> 62 62 63 <bridgehead renderas="sect3">Additional Downloads</bridgehead> 64 <itemizedlist spacing="compact"> 65 <listitem> 66 <para>Required patch: <ulink 67 url="ftp://stunnel.mirt.net/stunnel/setuid.patch"/></para> 68 </listitem> 69 </itemizedlist> 70 63 71 <bridgehead renderas="sect3">Stunnel Dependencies</bridgehead> 64 72 … … 79 87 <para>The <command>stunnel</command> daemon will be run in a 80 88 <command>chroot</command> jail by an unprivileged user. Create the 81 new user, group and <command>chroot</command> home directory structure 82 using the following commands as the 89 new user and group using the following commands as the 83 90 <systemitem class="username">root</systemitem> user:</para> 84 91 85 92 <screen role="root"><userinput>groupadd -g 51 stunnel && 86 93 useradd -c "Stunnel Daemon" -d /var/lib/stunnel \ 87 -g stunnel -s /bin/false -u 51 stunnel && 88 install -v -m 1770 -o stunnel -g stunnel -d /var/lib/stunnel/run</userinput></screen> 94 -g stunnel -s /bin/false -u 51 stunnel</userinput></screen> 89 95 90 96 <note> … … 110 116 commands:</para> 111 117 112 <screen><userinput>sed -i 's|nogroup|stunnel|g' configure && 118 <screen><userinput>pushd src 119 patch -Np0 -i ../../setuid.patch 120 popd 121 122 sed -i 's|nogroup|stunnel|g' configure && 113 123 sed -i 's|$(prefix)/var/lib|$(localstatedir)|' tools/Makefile.in && 114 sed -i 's|doc/stunnel|&-$(VERSION)|' {,doc/,tools/}Makefile.in &&115 124 116 125 ./configure --prefix=/usr \ … … 124 133 <para>Now, as the <systemitem class="username">root</systemitem> user:</para> 125 134 126 <screen role="root"><userinput>make install</userinput></screen>135 <screen role="root"><userinput>make docdir=/usr/share/doc/stunnel-&stunnel-version; install</userinput></screen> 127 136 128 137 </sect2> … … 142 151 <filename class='directory'>/usr/var/lib/stunnel</filename>.</para> 143 152 144 <para><command>sed -i '...' {,doc/,tools/}Makefile.in</command>: This145 command modifies the location of the installed documentation files to a146 versioned directory.</para>147 148 153 <para><parameter>--sysconfdir=/etc</parameter>: This parameter forces 149 154 the configuration directory to <filename class='directory'>/etc</filename> … … 160 165 the parameter if <application>tcpwrappers</application> is installed.</para> 161 166 162 <para><command>make install</command>: This command installs the package 163 and, if you did not copy an <filename>stunnel.pem</filename> file to the 167 <para><command>make docdir=... install</command>: This command installs the 168 package, changes the documentation installation directory to standard 169 naming conventions and, if you did not copy an 170 <filename>stunnel.pem</filename> file to the 164 171 <filename class='directory'>/etc/stunnel</filename> directory, prompts you 165 172 for the necessary information to create one. Ensure you reply to the</para> … … 189 196 <title>Configuration Information</title> 190 197 191 <para>Create a basic <filename>/etc/stunnel/stunnel.conf</filename> 192 configuration file using the following commands:</para> 198 <para>As the <systemitem class="username">root</systemitem> user, 199 create the directory used for the 200 <filename class='extension'>.pid</filename> file that is created 201 when the <application>Stunnel</application> daemon starts:</para> 202 203 <screen role="root"><userinput>install -v -m750 -o stunnel -g stunnel -d /var/lib/stunnel/run</userinput></screen> 204 205 <para>Next, create a basic <filename>/etc/stunnel/stunnel.conf</filename> 206 configuration file using the following commands as the 207 <systemitem class="username">root</systemitem> user:</para> 193 208 194 209 <screen role="root"><userinput>cat >/etc/stunnel/stunnel.conf << "EOF" && 195 <literal> #File: /etc/stunnel/stunnel.conf196 197 pid = /run/stunnel.pid210 <literal>; File: /etc/stunnel/stunnel.conf 211 212 pid = /run/stunnel.pid 198 213 chroot = /var/lib/stunnel 199 214 client = no … … 204 219 chmod -v 644 /etc/stunnel/stunnel.conf</userinput></screen> 205 220 206 <para>Next, you need to add the service(s) you wish to encrypt to the207 configuration file. The format is as follows:</para>221 <para>Finally, you need to add the service(s) you wish to encrypt to the 222 configuration file. The format is as follows:</para> 208 223 209 224 <screen><literal>[<replaceable><service></replaceable>] … … 255 270 <seg>stunnel and stunnel3</seg> 256 271 <seg>libstunnel.so</seg> 257 <seg>/etc/stunnel, /var/lib/stunnel and 258 /usr/share/doc/stunnel-&stunnel-version;</seg> 272 <seg>/etc/stunnel, /usr/lib/stunnel, 273 /usr/share/doc/stunnel-&stunnel-version; and 274 /var/lib/stunnel</seg> 259 275 </seglistitem> 260 276 </segmentedlist>
Note:
See TracChangeset
for help on using the changeset viewer.