From 95ff859484637fe1bedfc50f0a1d9be449113971 Mon Sep 17 00:00:00 2001
From: UbitUmarov
Date: Wed, 7 Dec 2016 20:33:38 +0000
Subject: change a few ssl config comments

---
 bin/OpenSim.ini.example   | 10 ++++------
 bin/OpenSimDefaults.ini   |  8 +++-----
 bin/Robust.HG.ini.example | 10 ++++------
 bin/Robust.ini.example    |  8 +++-----
 4 files changed, 14 insertions(+), 22 deletions(-)

(limited to 'bin')

diff --git a/bin/OpenSim.ini.example b/bin/OpenSim.ini.example
index a4a6d0c..7426980 100644
--- a/bin/OpenSim.ini.example
+++ b/bin/OpenSim.ini.example
@@ -297,18 +297,16 @@
 
     
     ;; SSL certificate validation options
-    ;; used also on contacting other peers that require SSL and we don't
-    ;; you should set this to false forcing all peers (like regions) to have valid certificates
-    ;; but you can allow selfsigned certificates or no official CA with next option true
+    ;; you can allow selfsigned certificates or no official CA with next option set to true
     ;# {NoVerifyCertChain} {} {do not verify SSL Cert Chain} {true false} true
     ; NoVerifyCertChain = true
 
     ;; you can also bypass the hostname or domain verification
     ;# {NoVerifyCertHostname} {} {do not verify SSL Cert name versus peer name} {true false} true
     ; NoVerifyCertHostname = true
-    ;; having both options true does provide encriptation, but low security
-    ;; possible enought for small grids, specially it not comercial       
-
+    ;; having both options true does provide encryption but with low security
+    ;; set both true if you don't care to use SSL, they are needed to contact regions or grids that do use it.
+    
 [AccessControl]
     ;# {AllowedClients} {} {Bar (|) separated list of allowed clients} {}
     ;; Bar (|) separated list of viewers which may gain access to the regions.
diff --git a/bin/OpenSimDefaults.ini b/bin/OpenSimDefaults.ini
index 4884d3d..a8566e2 100644
--- a/bin/OpenSimDefaults.ini
+++ b/bin/OpenSimDefaults.ini
@@ -407,14 +407,12 @@
     ; #
     
     ; SSL certificate validation options
-    ; used also on contacting other peers that require SSL and we don't
-    ; you should set this to false forcing all peers (like regions) to have valid certificates
-    ; but you can allow selfsigned certificates or no official CA with next option true
+    ; you can allow selfsigned certificates or no official CA with next option set to true
     ; NoVerifyCertChain = true
     ; you can also bypass the hostname or domain verification
     ; NoVerifyCertHostname = true
-    ; having both options true does provide encriptation, but low security
-    ; possible enought for small grids, specially it not comercial    
+    ; having both options true does provide encryption but with low security
+    ; set both true if you don't care to use SSL, they are needed to contact regions or grids that do use it.
     
 [Map]
     ; Map tile options.  
diff --git a/bin/Robust.HG.ini.example b/bin/Robust.HG.ini.example
index f66b245..0382d4b 100644
--- a/bin/Robust.HG.ini.example
+++ b/bin/Robust.HG.ini.example
@@ -70,15 +70,13 @@
     ; How many lines of command history should we keep? (default is 100)
     ConsoleHistoryFileLines = 100
 
-    ; peers SSL certificate validation options (if using ssl)
-    ; used also on contacting other peers that require SSL and we don't
-    ; you should set this to false forcing all peers (like regions) to have valid certificates
-    ; but you can allow selfsigned certificates or no official CA with next option true
+    ; peers SSL certificate validation options
+    ; you can allow selfsigned certificates or no official CA with next option set to true
     NoVerifyCertChain = true
     ; you can also bypass the hostname or domain verification
     NoVerifyCertHostname = true
-    ; having both options true does provide encriptation, but low security
-    ; possible enought for small grids, specially it not comercial
+    ; having both options true does provide encryption but with low security
+    ; set both true if you don't care to use SSL, they are needed to contact regions or grids that do use it.
     
 
 [ServiceList]
diff --git a/bin/Robust.ini.example b/bin/Robust.ini.example
index 5e6ce47..51cf9d8 100644
--- a/bin/Robust.ini.example
+++ b/bin/Robust.ini.example
@@ -63,14 +63,12 @@
     ConsoleHistoryFileLines = 100
     
     ; peers SSL certificate validation options
-    ; used also on contacting other peers that require SSL and we don't
-    ; you should set this to false forcing all peers (like regions) to have valid certificates
-    ; but you can allow selfsigned certificates or no official CA with next option true
+    ; you can allow selfsigned certificates or no official CA with next option set to true
     NoVerifyCertChain = true
     ; you can also bypass the hostname or domain verification
     NoVerifyCertHostname = true
-    ; having both options true does provide encriptation, but low security
-    ; possible enought for small grids, specially it not comercial
+    ; having both options true does provide encryption but with low security
+    ; set both true if you don't care to use SSL, they are needed to contact regions or grids that do use it.
   
 [ServiceList]
     AssetServiceConnector = "${Const|PrivatePort}/OpenSim.Server.Handlers.dll:AssetServiceConnector"
-- 
cgit v1.1