"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "hitch.conf.5" between
hitch-1.7.0.tar.gz and hitch-1.7.2.tar.gz

About: Hitch is a libev-based high performance SSL/TLS proxy that terminates TLS/SSL connections and forwards the unencrypted traffic to some backend.

hitch.conf.5  (hitch-1.7.0):hitch.conf.5  (hitch-1.7.2)
skipping to change at line 183 skipping to change at line 183
A file suitable for Hitch is a concatenation of a private key and a corre sponding certificate or certifi- A file suitable for Hitch is a concatenation of a private key and a corre sponding certificate or certifi-
cate chain. cate chain.
At least one PEM file is needed for Hitch to start, but it can be supplie d on the command line. At least one PEM file is needed for Hitch to start, but it can be supplie d on the command line.
Certificates are used in the order they are listed; the last certificate listed will be used if none of Certificates are used in the order they are listed; the last certificate listed will be used if none of
the others match. the others match.
In the event that we have multiple certificates that provide the s ame SNI string, an error will be In the event that we have multiple certificates that provide the s ame SNI string, an error will be
logged. The last loaded certificate will in that case take precendence. logged. The last loaded certificate will in that case take precedence.
For partial overlap in names, e.g. if one certificate provides "www.examp le.com" and another one "*.exam- For partial overlap in names, e.g. if one certificate provides "www.examp le.com" and another one "*.exam-
ple.com", the most specific match will always take precendence at SNI loo kup. ple.com", the most specific match will always take precedence at SNI look up.
This option is also available in a frontend declaration, to make a certi ficate only available for a spe- This option is also available in a frontend declaration, to make a certi ficate only available for a spe-
cific listen endpoint. cific listen endpoint.
private-key = <string> private-key = <string>
If set, the private key is read from specified location, not from the cer t file. If set, the private key is read from specified location, not from the cer t file.
pem-file = { pem-file = {
cert = "mycert.pem" cert = "mycert.pem"
private-key = "myprivate.key" private-key = "myprivate.key"
 End of changes. 2 change blocks. 
2 lines changed or deleted 2 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)