|
1 Patch origin: in-house |
|
2 Patch status: Solaris-specific; not suitable for upstream |
|
3 |
|
4 Changes CA directory in the sample configuration file. |
|
5 |
|
6 --- tools/stunnel.conf-sample.in 2016-07-05 14:27:57.000000000 -0700 |
|
7 +++ tools/stunnel.conf-sample.in 2017-03-21 02:49:10.831006080 -0700 |
|
8 @@ -45,10 +45,10 @@ |
|
9 |
|
10 ; ***************************************** Example TLS client mode services |
|
11 |
|
12 -; The following examples use /etc/ssl/certs, which is the common location |
|
13 -; of a hashed directory containing trusted CA certificates. This is not |
|
14 -; a hardcoded path of the stunnel package, as it is not related to the |
|
15 -; stunnel configuration in @sysconfdir@/stunnel/. |
|
16 +; The following examples use /etc/openssl/certs, which is the location |
|
17 +; of directory containing hashed links to trusted CA certificate on Solaris. |
|
18 +; This is not a hardcoded path of the stunnel package, as it is not related |
|
19 +; to the stunnel configuration in @sysconfdir@/stunnel/. |
|
20 |
|
21 [gmail-pop3] |
|
22 client = yes |
|
23 @@ -55,7 +55,7 @@ |
|
24 accept = 127.0.0.1:110 |
|
25 connect = pop.gmail.com:995 |
|
26 verifyChain = yes |
|
27 -CApath = /etc/ssl/certs |
|
28 +CApath = /etc/openssl/certs |
|
29 checkHost = pop.gmail.com |
|
30 OCSPaia = yes |
|
31 |
|
32 @@ -64,7 +64,7 @@ |
|
33 accept = 127.0.0.1:143 |
|
34 connect = imap.gmail.com:993 |
|
35 verifyChain = yes |
|
36 -CApath = /etc/ssl/certs |
|
37 +CApath = /etc/openssl/certs |
|
38 checkHost = imap.gmail.com |
|
39 OCSPaia = yes |
|
40 |
|
41 @@ -73,7 +73,7 @@ |
|
42 accept = 127.0.0.1:25 |
|
43 connect = smtp.gmail.com:465 |
|
44 verifyChain = yes |
|
45 -CApath = /etc/ssl/certs |
|
46 +CApath = /etc/openssl/certs |
|
47 checkHost = smtp.gmail.com |
|
48 OCSPaia = yes |
|
49 |