maybe chmod 0600 'config-archive/etc/ssh/sshd_config.dist'
maybe chmod 0755 'config-archive/etc/stunnel'
maybe chmod 0644 'config-archive/etc/stunnel/stunnel.conf'
-maybe chmod 0644 'config-archive/etc/stunnel/stunnel.conf.dist.new'
+maybe chmod 0644 'config-archive/etc/stunnel/stunnel.conf.dist'
maybe chmod 0440 'config-archive/etc/sudoers'
maybe chmod 0440 'config-archive/etc/sudoers.dist.new'
maybe chmod 0755 'config-archive/etc/syslog-ng'
maybe chmod 0755 'sandbox.d'
maybe chmod 0644 'sandbox.d/00default'
maybe chmod 0644 'sandbox.d/10openssl'
+maybe chmod 0644 'sandbox.d/20icedtea-bin-6'
maybe chmod 0644 'sandbox.d/37fontconfig'
maybe chmod 0755 'sasl2'
maybe chmod 0644 'sasl2/.keep_dev-libs_cyrus-sasl-2'
--- /dev/null
+# Sample stunnel configuration file by Michal Trojnara 2002-2005
+# Some options used here may not be adequate for your particular configuration
+# Please make sure you understand them (especially the effect of chroot jail)
+
+# Certificate/key is needed in server mode and optional in client mode
+# cert = /etc/stunnel/stunnel.pem
+# key = /etc/stunnel/stunnel.pem
+
+# Some security enhancements for UNIX systems - comment them out on Win32
+# chroot = /chroot/stunnel/
+setuid = stunnel
+setgid = stunnel
+# PID is created inside chroot jail
+pid = /run/stunnel/stunnel.pid
+
+# Some performance tunings
+socket = l:TCP_NODELAY=1
+socket = r:TCP_NODELAY=1
+#compression = rle
+
+# Workaround for Eudora bug
+#options = DONT_INSERT_EMPTY_FRAGMENTS
+
+# Authentication stuff
+#verify = 2
+# Don't forget to c_rehash CApath
+# CApath is located inside chroot jail:
+#CApath = /certs
+# It's often easier to use CAfile:
+#CAfile = /etc/stunnel/certs.pem
+# Don't forget to c_rehash CRLpath
+# CRLpath is located inside chroot jail:
+#CRLpath = /crls
+# Alternatively you can use CRLfile:
+#CRLfile = /etc/stunnel/crls.pem
+
+# Some debugging stuff useful for troubleshooting
+#debug = 7
+#output = stunnel.log
+
+# Use it for client mode
+#client = yes
+
+# Service-level configuration
+
+#[pop3s]
+#accept = 995
+#connect = 110
+
+#[imaps]
+#accept = 993
+#connect = 143
+
+#[ssmtp]
+#accept = 465
+#connect = 25
+
+#[https]
+#accept = 443
+#connect = 80
+#TIMEOUTclose = 0
+++ /dev/null
-# Sample stunnel configuration file by Michal Trojnara 2002-2005
-# Some options used here may not be adequate for your particular configuration
-# Please make sure you understand them (especially the effect of chroot jail)
-
-# Certificate/key is needed in server mode and optional in client mode
-# cert = /etc/stunnel/stunnel.pem
-# key = /etc/stunnel/stunnel.pem
-
-# Some security enhancements for UNIX systems - comment them out on Win32
-# chroot = /chroot/stunnel/
-setuid = stunnel
-setgid = stunnel
-# PID is created inside chroot jail
-pid = /var/run/stunnel/stunnel.pid
-
-# Some performance tunings
-socket = l:TCP_NODELAY=1
-socket = r:TCP_NODELAY=1
-#compression = rle
-
-# Workaround for Eudora bug
-#options = DONT_INSERT_EMPTY_FRAGMENTS
-
-# Authentication stuff
-#verify = 2
-# Don't forget to c_rehash CApath
-# CApath is located inside chroot jail:
-#CApath = /certs
-# It's often easier to use CAfile:
-#CAfile = /etc/stunnel/certs.pem
-# Don't forget to c_rehash CRLpath
-# CRLpath is located inside chroot jail:
-#CRLpath = /crls
-# Alternatively you can use CRLfile:
-#CRLfile = /etc/stunnel/crls.pem
-
-# Some debugging stuff useful for troubleshooting
-#debug = 7
-#output = stunnel.log
-
-# Use it for client mode
-#client = yes
-
-# Service-level configuration
-
-#[pop3s]
-#accept = 995
-#connect = 110
-
-#[imaps]
-#accept = 993
-#connect = 143
-
-#[ssmtp]
-#accept = 465
-#connect = 25
-
-#[https]
-#accept = 443
-#connect = 80
-#TIMEOUTclose = 0
<limit name="max_outgoing_bytes">1000000000</limit>
<limit name="max_outgoing_unix_fds">250000000</limit>
<limit name="max_message_size">1000000000</limit>
- <limit name="max_message_unix_fds">4096</limit>
+ <limit name="max_message_unix_fds">1024</limit>
<limit name="service_start_timeout">120000</limit>
<limit name="auth_timeout">240000</limit>
<limit name="max_completed_connections">100000</limit>
#!/sbin/runscript
-# Copyright 1999-2013 Gentoo Foundation
+# Copyright 1999-2014 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-misc/stunnel/files/stunnel.initd-start-stop-daemon,v 1.3 2013/06/16 16:04:11 blueness Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-misc/stunnel/files/stunnel.rc7,v 1.1 2014/06/10 11:39:33 blueness Exp $
SERVICENAME=${SVCNAME#*.}
SERVICENAME=${SERVICENAME:-stunnel}
CHROOT=$(grep "^chroot" ${STUNNEL_CONFIGFILE} | sed "s;.*= *;;")
[ -n "${CHROOT}" ] && CHROOT="--chroot ${CHROOT}"
PIDFILE=$(grep "^pid" ${STUNNEL_CONFIGFILE} | sed "s;.*= *;;")
- PIDFILE=${PIDFILE:-/var/run/stunnel/${SERVICENAME}.pid}
+ PIDFILE=${PIDFILE:-/run/stunnel/${SERVICENAME}.pid}
}
start() {
get_config || return 1
- checkpath -d -m 0775 -o root:stunnel /var/run/stunnel
- if [ "$(dirname ${PIDFILE})" != "/var/run" ]; then
+ checkpath -d -m 0775 -o root:stunnel /run/stunnel
+ if [ "$(dirname ${PIDFILE})" != "/run" ]; then
checkpath -d -m 0755 -o stunnel:stunnel -q $(dirname ${PIDFILE})
fi
ebegin "Starting ${SVCNAME}"
; http://php.net/error-log
; Example:
;error_log = php_errors.log
-; Log errors to syslog (Event Log on NT, not valid in Windows 95).
+; Log errors to syslog (Event Log on Windows).
;error_log = syslog
;windows.show_crt_warning
; The path to a log file that will log all mail() calls. Log entries include
; the full path of the script, line number, To address and headers.
;mail.log =
-; Log mail to syslog (Event Log on NT, not valid in Windows 95).
+; Log mail to syslog (Event Log on Windows).
;mail.log = syslog
[SQL]
; http://php.net/error-log
; Example:
;error_log = php_errors.log
-; Log errors to syslog (Event Log on NT, not valid in Windows 95).
+; Log errors to syslog (Event Log on Windows).
;error_log = syslog
;windows.show_crt_warning
; The path to a log file that will log all mail() calls. Log entries include
; the full path of the script, line number, To address and headers.
;mail.log =
-; Log mail to syslog (Event Log on NT, not valid in Windows 95).
+; Log mail to syslog (Event Log on Windows).
;mail.log = syslog
[SQL]
; http://php.net/error-log
; Example:
;error_log = php_errors.log
-; Log errors to syslog (Event Log on NT, not valid in Windows 95).
+; Log errors to syslog (Event Log on Windows).
;error_log = syslog
;windows.show_crt_warning
; The path to a log file that will log all mail() calls. Log entries include
; the full path of the script, line number, To address and headers.
;mail.log =
-; Log mail to syslog (Event Log on NT, not valid in Windows 95).
+; Log mail to syslog (Event Log on Windows).
;mail.log = syslog
[SQL]
; http://php.net/error-log
; Example:
;error_log = php_errors.log
-; Log errors to syslog (Event Log on NT, not valid in Windows 95).
+; Log errors to syslog (Event Log on Windows).
;error_log = syslog
;windows.show_crt_warning
; The path to a log file that will log all mail() calls. Log entries include
; the full path of the script, line number, To address and headers.
;mail.log =
-; Log mail to syslog (Event Log on NT, not valid in Windows 95).
+; Log mail to syslog (Event Log on Windows).
;mail.log = syslog
[SQL]
; http://php.net/error-log
; Example:
;error_log = php_errors.log
-; Log errors to syslog (Event Log on NT, not valid in Windows 95).
+; Log errors to syslog (Event Log on Windows).
;error_log = syslog
;windows.show_crt_warning
; The path to a log file that will log all mail() calls. Log entries include
; the full path of the script, line number, To address and headers.
;mail.log =
-; Log mail to syslog (Event Log on NT, not valid in Windows 95).
+; Log mail to syslog (Event Log on Windows).
;mail.log = syslog
[SQL]
~dev-python/virtualenvwrapper-4.1.1
~dev-ruby/facter-1.7.4
+~dev-ruby/facter-2.0.2
~media-libs/freetype-2.4.11
app-doc/doxygen dot
-app-editors/vim cscope vim-with-x
+app-editors/vim cscope racket vim-with-x
app-misc/mc 7zip chdir mclib sftp -slang
app-misc/screen multiuser
media-libs/x264 interlaced
# media-video/ffmpeg aac amr dirac frei0r gsm hardcoded-tables -pic schroedinger speex v4l2 vhook
-media-video/ffmpeg aac aacplus amr ass dirac gsm hardcoded-tables openssl -pic schroedinger speex v4l2 vhook
+media-video/ffmpeg aac aacplus amr ass dirac gsm hardcoded-tables libsoxr openssl -pic schroedinger speex v4l2 vhook
# move net-analyzer/nagios-nrpe net-analyzer/nrpe
net-analyzer/nrpe command-args
-SEARCH_DIRS_MASK="/opt/icedtea-bin-6.1.12.7"
+SEARCH_DIRS_MASK="/opt/icedtea-bin-6.1.13.3"
--- /dev/null
+SANDBOX_PREDICT="/proc/self/coredump_filter"
setuid = stunnel
setgid = stunnel
# PID is created inside chroot jail
-pid = /var/run/stunnel/stunnel.pid
+pid = /run/stunnel/stunnel.pid
# Some performance tunings
socket = l:TCP_NODELAY=1
# Service-level configuration
-[postgres]
-accept = 5442
-connect = 5432
-
#[pop3s]
#accept = 995
#connect = 110
-# sysstat-10.2.0 configuration file.
+# sysstat-10.2.1 configuration file.
# How long to keep log files (in days).
# If value is greater than 28, then log files are kept in
projects / config / uhu1 / etc.git / commitdiff