[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[minion-cvs] Last code tweaks before v001
Update of /home/minion/cvsroot/src/minion/etc
In directory moria.mit.edu:/tmp/cvs-serv6046/etc
Modified Files:
mixminiond.conf
Log Message:
Last code tweaks before v001
Index: mixminiond.conf
===================================================================
RCS file: /home/minion/cvsroot/src/minion/etc/mixminiond.conf,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -d -r1.4 -r1.5
--- mixminiond.conf 12 Dec 2002 19:56:46 -0000 1.4
+++ mixminiond.conf 16 Dec 2002 01:37:21 -0000 1.5
@@ -1,98 +1,124 @@
# /etc/mixminiond.conf -- for use with mixminion 0.0.1
# $Id$
-# This is a configuration file for the mixminion anonymous remailer. Edit
-# this file, install it in /etc/, and you're ready to go.
+# This is a configuration file for the mixminion anonymous remailer. Edit
+# this file, install it in /etc/ (or elsewhere, if you specify a
+# command-line argument for mixminion), and you're ready to go.
#
-# This file format will probably change between now and version 1.0. Watch
-# out.
+# This file format will probably change between now and version 1.0. Watch
+# out.
[Host]
-# Uncomment this line to define a 'secure delete' command to overwrite
-# deleted files. (This isn't as secure as you think: see the
-# comment in Common.py).
+# Uncomment this line to define a 'secure delete' command to overwrite
+# deleted files. (This isn't as secure as you think: see the comment in
+# Common.py).
+#
+# This is the default command: we just zero out files and unlink them.
+# This choice protects against root (on a non-journaling filesystem), but
+# not against an attacker with deep hardware wizardry and resources.
#
-# This is the default command: we just zero out files and unlink them.
-# This choice protects against root, but not against an attacker with
-# deep hardware wizardry and resources.
#ShredCommand: /usr/bin/shred -uz -n0
-# Uncomment this line if your system uses a different entropy generator.
+# Uncomment this line if your system uses a different entropy generator.
+# This file must be a character device that produces a truly random
+# bytestream.
+#
#EntropySource: /dev/urandom
[Server]
-# Location of all mixminion keys and file queues. You don't need to create
-# this directory; mixminion will do it for you.
+# Location of all mixminion keys and file queues. You don't need to
+# create this directory; mixminion will do it for you.
+#
#Homedir: /var/spool/minion
-# Location for log file.
+# Location for log file.
+#
#LogFile: /var/spool/minion/log
-# Minimum severity of messages to include in log file. Allowable values are:
-# 'NEVER', 'FATAL', 'ERROR', 'WARN', 'INFO', 'DEBUG', and 'TRACE'.
-# Watch out! If you use 'DEBUG' or 'TRACE', the log may contain message that
-# could comprimise anonymity.
+# Minimum severity of messages to include in log file. Allowable values
+# are: 'NEVER', 'FATAL', 'ERROR', 'WARN', 'INFO', 'DEBUG', and 'TRACE'.
+#
+# Watch out! If you use 'DEBUG' or 'TRACE', the log may contain message
+# that could comprimise anonymity.
#
#LogLevel: DEBUG
-# Change this to 'yes' to make the server echo log messages to stdout.
+# Change this to 'yes' to make the server echo log messages to stdout.
+#
#EchoMessages: no
-# How many bits should the server use for its long-lived 'Identity' keys?
+# How many bits should the server use for its long-lived 'Identity' keys?
# Must be between 2048 and 4096.
+#
#IdentityKeyBits: 2048
-# How often should the server rotate its public keys? If you rotate often,
+# How often should the server rotate its public keys? If you rotate often,
# you need less storage space for message hash logs, and messages sent
# using your old keys are less vulnerable to compomise... but if you rotate
# too often, your server may drop messages that use out-of-date keys.
-# You can't rotate keys more than once a day.
+#
+# You can't rotate keys more than once a day.
+#
+# WARNING: In version 0.0.1, automatic key rotation isn't supported.
+#
PublicKeyLifetime: 3 months
-# How long after a key rotation should the old key still work?
-# NOT YET FULLY SUPPORTED.
+# How long after a key rotation should the old key still work?
+# NOT YET FULLY SUPPORTED.
#PublicKeySloppiness: 5 minutes
-# Use this option to define a 'nickname' for this server that users will
-# use as a 'friendlier' version of your identity key. By default, this
-# is just your hostname.
+# Use this option to define a 'nickname' for this server that users will
+# use as a 'friendlier' version of your identity key. By default, this is
+# just your hostname.
+#
#Nickname: <Insert nickname here>
-# Use this option to define an administrative contact for the remailer.
+# Use this option to define an administrative contact for the remailer.
#
#Contact-Email: relayadmin@your.domain.here
-# Use this field for information that users of your remailer may want to have.
-# Must be no longer than 1024 characters.
-# NOTE: Users will not necessarily see this field before they use your
-# remailer.
+# Use this field for information that users of your remailer may want to
+# have. Must be no longer than 1024 characters.
+#
+# NOTE: Users will not necessarily see this field before they use your
+# remailer.
+#
Comments: This server has been running Mixminion since version 0.0.1.
Of course, since Mixminion is still in alpha (or since we haven't
edit our configuration file since Mixminion came out of alpha), you
shouldn't trust us with your anonymity yet.
-# Path to search for loadable modules.
+# Path to search for loadable modules.
+#
#ModulePath: /var/spool/minion/modules
+
+# Use this format to load an extension module.
#
-# Use this format to load an extension module.
#Module: ModuleName
-# OTHER VALUES FOR THESE OPTIONS ARE NOT YET SUPPORTED
+# OTHER VALUES FOR THESE OPTIONS ARE NOT YET SUPPORTED; don't edit this
+# section.
EncryptIdentityKey: no
EncryptPrivateKey: no
Mode: relay
+NoDaemon: yes
[DirectoryServers]
# Not yet supported
[Incoming/MMTP]
-# Use this option to set your IP address. We'll try to guess, but we might
-# guess wrong.
+
+# Use this option to set your IP address. We'll try to guess, but we might
+# guess wrong, especially if you have multiple network interfaces.
+#
#IP: 0.0.0.0
-# Port to listen on
+
+# Port to listen on
+#
#Port: 48099
+
# OTHER VALUES FOR THESE OPTIONS ARE NOT YET SUPPORTED
Enabled: yes
Allow: *
@@ -102,15 +128,31 @@
Enabled: yes
Allow: *
+# Uncomment this section to enable 'MBOX' delivery, using a local SMTP
+# server to deliver messages to a set of preconfigured addresses. Put
+# the addresses in some address file, in the format:
+# mysteryfred: fred@fred.com
+# Then, users can send messages to these users as
+# "mbox:mysteryfred@yourserver's-nickname".
+#
#[Delivery/MBOX]
-#Enabled: no
-#AddressFile: x
-#ReturnAddress: x
-#RemoveContact: x
+#Enabled: yes
+#AddressFile: <path to address file>
+#ReturnAddress: <"From:" address to use>
+#RemoveContact: <Address to use as a contact
#SMTPServer: localhost
+# Uncomment this section to enable delivery of SMTP messages via the Type-II
+# ("Mixmaster") network. This when only be useful while we're bootstrapping
+# the Type-III network, and don't have a lot of people who can run long-lived
+# SMTP exit nodes.
+#
+# You must install the Mixmaster client locally to use this module.
+#
#[Delivery/SMTP-Via-Mixmaster]
-#Enabled: no
+#Enabled: yes
+# Path to the Mixmaster binary
#MixCommand: /home/minion/Mix/mix
+# Server (or comma-separated list of servers) to use as our relay.
#Server: lcs
#SubjectLine: Type-III Anonymous message