~ubuntu-branches/ubuntu/saucy/nut/saucy

« back to all changes in this revision

Viewing changes to docs/ssl.txt

Committer: Bazaar Package Importer
Author(s): Reinhard Tartler
Date: 2005-07-20 19:48:50 UTC
mto: (16.1.1 squeeze)
mto: This revision was merged to the branch mainline in revision 4.
Revision ID: james.westby@ubuntu.com-20050720194850-oo61wjr33rrx2mre

Tags: upstream-2.0.2

Import upstream version 2.0.2

files added:
data/driver.list

docs/cables/apc-rs500-serial.txt

docs/ideas.txt

drivers/apc-hid.h

drivers/belkinunv.c

drivers/bestfcom.c

drivers/cpsups.c

drivers/cpsups.h

drivers/ippon.c

drivers/metasys.c

drivers/mge-hid.h

drivers/mustek.c

drivers/netvisionmib.h

drivers/powermust.c

drivers/pwmib.h

drivers/serial.c

drivers/serial.h

drivers/solis.c

drivers/solis.h

drivers/upscode2.c

include/attribute.h

include/version

lib/Makefile.in

lib/README

lib/libupsclient-config.in

lib/libupsclient.pc.in

man/belkinunv.8

man/bestfcom.8

man/cpsups.8

man/ippon.8

man/metasys.8

man/mustek.8

man/powermust.8

man/solis.8

man/upscode2.8

server/netget.h

server/netinstcmd.h

server/netlist.h

server/netmisc.c

server/netmisc.h

server/netset.h

server/netuser.c

server/netuser.h

files removed:
clients/libupsclient.a

common/strlcpy.c

docs/driver.list

docs/todo.txt

drivers/bestfortress.c

drivers/ferrups.c

drivers/hp.c

drivers/microdowell.c

drivers/microdowell.h

drivers/newapc.c

drivers/newapc.h

drivers/newhidups

drivers/powernet.c

drivers/powernet.h

drivers/sec.c

drivers/sec.h

drivers/upscommon.c

include/cmd-map-init.h

include/cmd-map.h

include/shared-tables-init.h

include/shared-tables.h

include/shared.h

include/upscommon.h

include/var-map-init.h

include/var-map.h

man/bestfortress.8

man/ferrups.8

man/hp.8

man/microdowell.8

man/newapc.8

man/powernet.8

man/sec.8

man/upscli_getlist.3

man/upscli_getvar.3

server/levels.h

server/oldnet.c

files modified:
CHANGES

CREDITS

INSTALL

MAINTAINERS

Makefile.in

NEWS

README

UPGRADING

clients/Makefile.in

clients/cgilib.c

clients/upsc.c

clients/upsclient.c

clients/upsclient.h

clients/upscmd.c

clients/upsimage.c

clients/upslog.c

clients/upslog.h

clients/upsmon.c

clients/upsmon.h

clients/upsrw.c

clients/upssched.c

clients/upsset.c

clients/upsstats.c

common/common.c

common/parseconf.c

common/upsconf.c

conf/ups.conf

conf/upsd.conf

conf/upsmon.conf

conf/upsstats-single.html

conf/upsstats.html

configure

configure.in

data/Makefile.in

data/cmdvartab

docs/FAQ

docs/big-servers.txt

docs/cables/apc.txt

docs/chroot.txt

docs/commands.txt

docs/configure.txt

docs/contact-closure.txt

docs/design.txt

docs/developers.txt

docs/new-drivers.txt

docs/new-names.txt

docs/protocol.txt

docs/shutdown.txt

docs/ssl.txt

drivers/Makefile.drvbuild

drivers/Makefile.in

drivers/apccmib.h

drivers/apcsmart.c

drivers/apcsmart.h

drivers/bcmxcp.c

drivers/bcmxcp.h

drivers/belkin.c

drivers/belkin.h

drivers/bestuferrups.c

drivers/bestups.c

drivers/blazer.c

drivers/cyberpower.c

drivers/dstate.c

drivers/dstate.h

drivers/dummycons.c

drivers/energizerups.c

drivers/esupssmart.c

drivers/etapro.c

drivers/everups.c

drivers/fentonups.c

drivers/fentonups.h

drivers/gendb

drivers/genericups.c

drivers/genericups.h

drivers/hid-usb.h

drivers/hidparser.c

drivers/hidparser.h

drivers/hidtypes.h

drivers/hidups.c

drivers/hidups.h

drivers/isbmex.c

drivers/libhid.c

drivers/libhid.h

drivers/libusb.c

drivers/liebert.c

drivers/main.c

drivers/main.h

drivers/masterguard.c

drivers/mge-shut.c

drivers/mge-shut.h

drivers/mge-utalk.c

drivers/mge-utalk.h

drivers/mgehid.h

drivers/mgemib.h

drivers/newhidups.c

drivers/newhidups.h

drivers/oneac.c

drivers/oneac.h

drivers/powercom.c

drivers/powercom.h

drivers/safenet.c

drivers/skel.c

drivers/sms.c

drivers/sms.h

drivers/snmp-ups.c

drivers/snmp-ups.h

drivers/tripplite.c

drivers/tripplitesu.c

drivers/upsdrvctl.c

drivers/victronups.c

include/common.h

include/config.h.in

include/parseconf.h

include/proto.h

include/upsconf.h

include/upshandler.h

include/version.h

man/Makefile.in

man/apcsmart.8

man/bcmxcp.8

man/belkin.8

man/bestuferrups.8

man/bestups.8

man/cyberpower.8

man/dummycons.8

man/energizerups.8

man/etapro.8

man/everups.8

man/fentonups.8

man/genericups.8

man/hidups.8

man/isbmex.8

man/liebert.8

man/masterguard.8

man/mge-shut.8

man/mge-utalk.8

man/newhidups.8

man/nutupsdrv.8

man/oneac.8

man/powercom.8

man/safenet.8

man/sms.8

man/snmp-ups.8

man/tripplite.8

man/tripplitesu.8

man/ups.conf.5

man/upscli_connect.3

man/upscli_disconnect.3

man/upscli_fd.3

man/upscli_get.3

man/upscli_list_next.3

man/upscli_list_start.3

man/upscli_readline.3

man/upscli_sendline.3

man/upscli_splitname.3

man/upscli_ssl.3

man/upscli_strerror.3

man/upscli_upserror.3

man/upsclient.3

man/upscmd.8

man/upsd.8

man/upsd.conf.5

man/upsd.users.5

man/upsdrvctl.8

man/upsimage.cgi.8

man/upslog.8

man/upsmon.8

man/upsmon.conf.5

man/upsrw.8

man/upssched.8

man/upssched.conf.5

man/upsset.cgi.8

man/upsset.conf.5

man/upsstats.cgi.8

man/upsstats.html.5

man/victronups.8

packaging/RedHat/nut.spec

packaging/RedHat/nut.spec.in

scripts/hotplug/libhid.usermap

server/Makefile.in

server/access.c

server/access.h

server/conf.c

server/conf.h

server/ctype.h

server/desc.c

server/netcmds.h

server/netget.c

server/netinstcmd.c

server/netlist.c

server/netset.c

server/sockdebug.c

server/ssl.c

server/ssl.h

server/sstate.c

server/sstate.h

server/upsd.c

server/upsd.h

server/user-data.h

server/user.c

server/user.h

Show diffs side-by-side

added added

removed removed

docs/ssl.txt

Desc: Configuring SSL

File: ssl.txt

Date: 25 February 2004

Date: 19 February 2004

Auth: Russell Kroll <rkroll@exploits.org>

SSL is now available as a development option. It encrypts sessions with

198

199

------------------------------------------------------------------------------

200

201

Note: SSL support is still considered development code, since various

202

bits of the implementation may change in the near future. One thing

203

that may happen before long is support for gnutls to avoid licensing

204

issues with OpenSSL.

201

SSL support should be considered stable but purposely underdocumented

202

since various bits of the implementation or configuration may change in

203

the future. In other words, if you use this and it stops working after

204

an upgrade, come back to this file to find out what changed.

205

206

This is why the other documentation doesn't mention any of these

207

directives yet. SSL support is a treat for those of you that RTFM.

208

209

There are also potential licensing issues for people who ship binary

210

packages since NUT is GPL and OpenSSL is not compatible with it. You

211

can still build and use it yourself, but you can't distribute the

212

results of it. Or maybe you can. It depends on what you consider

213

"essential system software", and some other legal junk that I'm not

214

going to touch.

215

216

Other packages have solved this by explicitly stating that an exception

217

has been granted. That is (purposely) impossible here, since NUT is the

218

combined effort of many people, and all of them would have to agree to a

219

license change. This is actually a feature, since it means nobody can

220

unilaterally run off with the source - not even me.

221

222

It would be nice if we could also link against gnutls to avoid the

223

licensing issues.

224

209

225

Potential problems

210

226

==================

211

227

226

242

227

243

If that's after the current date, you need to generate another cert/key

228

244

pair using the procedure above.

245

246

CAs / signed keys

247

=================

248

249

There are probably other ways to handle this, involving keys which have

250

been signed by a CA you recognize. Contact your local SSL guru.

251

Older »