diff options
Diffstat (limited to '')
-rw-r--r-- | bin/OpenSimDefaults.ini | 36 |
1 files changed, 25 insertions, 11 deletions
diff --git a/bin/OpenSimDefaults.ini b/bin/OpenSimDefaults.ini index 644391f..0203300 100644 --- a/bin/OpenSimDefaults.ini +++ b/bin/OpenSimDefaults.ini | |||
@@ -401,7 +401,18 @@ | |||
401 | ; routing and land at the landmark coordinates when set to true | 401 | ; routing and land at the landmark coordinates when set to true |
402 | ; default is false | 402 | ; default is false |
403 | ; TelehubAllowLandmark = false | 403 | ; TelehubAllowLandmark = false |
404 | 404 | ||
405 | ; # | ||
406 | ; # SSL certificates validation options | ||
407 | ; # | ||
408 | |||
409 | ; SSL certificate validation options | ||
410 | ; you can allow selfsigned certificates or no official CA with next option set to true | ||
411 | ; NoVerifyCertChain = true | ||
412 | ; you can also bypass the hostname or domain verification | ||
413 | ; NoVerifyCertHostname = true | ||
414 | ; having both options true does provide encryption but with low security | ||
415 | ; set both true if you don't care to use SSL, they are needed to contact regions or grids that do use it. | ||
405 | 416 | ||
406 | [Map] | 417 | [Map] |
407 | ; Map tile options. | 418 | ; Map tile options. |
@@ -565,16 +576,18 @@ | |||
565 | http_listener_port = 9000 | 576 | http_listener_port = 9000 |
566 | console_port = 0 | 577 | console_port = 0 |
567 | 578 | ||
568 | ; ssl config: Experimental! The auto https config only really works definately on windows XP now | 579 | ; ssl config: Experimental! |
569 | ; you need a Cert Request/Signed pair installed in the MY store with the CN specified below | 580 | http_listener_ssl = false ; if set to true main server is replaced by a ssl one |
570 | ; you can use https on other platforms, but you'll need to configure the httpapi yourself for now | ||
571 | http_listener_ssl = false ; Also create a SSL server | ||
572 | http_listener_cn = "localhost" ; Use the cert with the common name | ||
573 | http_listener_sslport = 9001 ; Use this port for SSL connections | 581 | http_listener_sslport = 9001 ; Use this port for SSL connections |
574 | http_listener_ssl_cert = "" ; Currently unused, but will be used for OSHttpServer | 582 | ; currently if using ssl, regions ExternalHostName must the the same and equal to http_listener_cn |
575 | 583 | ; this will change is future | |
576 | ; HTTPS for "Out of band" management applications such as the remote | 584 | http_listener_cn = "myRegionsExternalHostName" |
577 | ; admin module | 585 | ; if the cert doesnt have a oficial CA or is selfsigned viewers option NoVerifySSLCert need to be set true |
586 | http_listener_cert_path = "mycert.p12" ; path for the cert file that is valid for the ExternalHostName | ||
587 | http_listener_cert_pass = "mycertpass" ; the cert passwork | ||
588 | |||
589 | ; addicional HTTPS for "Out of band" management applications such as the remote | ||
590 | ; admin module or scripts | ||
578 | ; | 591 | ; |
579 | ; Create https_listener = "True" will create a listener on the port | 592 | ; Create https_listener = "True" will create a listener on the port |
580 | ; specified. Provide the path to your server certificate along with it's | 593 | ; specified. Provide the path to your server certificate along with it's |
@@ -582,7 +595,7 @@ | |||
582 | ; https_listener = False | 595 | ; https_listener = False |
583 | ; Set our listener to this port | 596 | ; Set our listener to this port |
584 | ; https_port = 0 | 597 | ; https_port = 0 |
585 | ; Path to X509 certificate | 598 | ; Path to X509 certificate, can be the same as main or another |
586 | ; cert_path = "path/to/cert.p12" | 599 | ; cert_path = "path/to/cert.p12" |
587 | ; Password for cert | 600 | ; Password for cert |
588 | ; cert_pass = "password" | 601 | ; cert_pass = "password" |
@@ -594,6 +607,7 @@ | |||
594 | ; HttpBodyMaxLenMAX=16384 | 607 | ; HttpBodyMaxLenMAX=16384 |
595 | 608 | ||
596 | ; Hostname to use in llRequestURL/llRequestSecureURL | 609 | ; Hostname to use in llRequestURL/llRequestSecureURL |
610 | ; must be a valid hostname for the ssl cert. | ||
597 | ; if not defined - default machine name is being used | 611 | ; if not defined - default machine name is being used |
598 | ; (on Windows this mean NETBIOS name - useably only inside local network) | 612 | ; (on Windows this mean NETBIOS name - useably only inside local network) |
599 | ; ExternalHostNameForLSL=127.0.0.1 | 613 | ; ExternalHostNameForLSL=127.0.0.1 |