On Sun, Feb 19, 2012 at 9:52 AM, ST <[email protected]> wrote: > Hi, > > could somebody, please, send me an example of configuration of xinetd + > stunnel + fossil? On the website I found only inetd... >
The https://www.fossil-scm.org/ website is implemented using stunnel + althttpd <http://www.sqlite.org/docsrc/artifact/14c9965da19?ln> + fossil-as-CGI. Actually, this same website also handles https://www.sqlite.org/ and several other sites, all of which are contained in a single UCC cert. Everything runs on a single VM - a Linode 1024<https://www.linode.com/> Note that xinetd does not come into play for https traffic. Stunnel takes the place of xinetd, listening for incoming connections and launching processes to deal with each one. Stunnel launches althttpd. Then althttpd launches fossil using CGI. The stunnel setup file is: cert = /etc/stunnel/sqlite.org.crt CAfile = /etc/stunnel/sqlite.org.crt key = /etc/ssl/certs/stunnel.pem ; Protocol version (all, SSLv2, SSLv3, TLSv1) sslVersion = SSLv3 pid = /var/run/stunnel4.pid ; Some performance tunings socket = l:TCP_NODELAY=1 socket = r:TCP_NODELAY=1 ; Some debugging stuff useful for troubleshooting ;debug = 7 ;output = /var/log/stunnel4/stunnel.log [https] accept = 443 TIMEOUTclose = 0 exec = /usr/bin/althttpd execargs = /usr/bin/althttpd -logfile /logs/http.log -root /home/www -user www-data -https 1 > > thank you in advance, > ST > > _______________________________________________ > fossil-users mailing list > [email protected] > http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users > -- D. Richard Hipp [email protected]
_______________________________________________ fossil-users mailing list [email protected] http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
