authdaemonrc.in

   1 ##VERSION: $Id: authdaemonrc.in,v 1.13 2005/10/05 00:07:32 mrsam Exp $
   2 #
   3 # Copyright 2000-2005 Double Precision, Inc.  See COPYING for
   4 # distribution information.
   5 #
   6 # authdaemonrc created from authdaemonrc.dist by sysconftool
   7 #
   8 # Do not alter lines that begin with ##, they are used when upgrading
   9 # this configuration.
  10 #
  11 # This file configures authdaemond, the resident authentication daemon.
  12 #
  13 # Comments in this file are ignored.  Although this file is intended to
  14 # be sourced as a shell script, authdaemond parses it manually, so
  15 # the acceptable syntax is a bit limited.  Multiline variable contents,
  16 # with the \ continuation character, are not allowed.  Everything must
  17 # fit on one line.  Do not use any additional whitespace for indentation,
  18 # or anything else.
  19
  20 ##NAME: authmodulelist:2
  21 #
  22 # The authentication modules that are linked into authdaemond.  The
  23 # default list is installed.  You may selectively disable modules simply
  24 # by removing them from the following list.  The available modules you
  25 # can use are: @ALLMODULES@
  26
  27 authmodulelist="@ALLMODULES@"
  28
  29 ##NAME: authmodulelistorig:3
  30 #
  31 # This setting is used by Courier's webadmin module, and should be left
  32 # alone
  33
  34 authmodulelistorig="@ALLMODULES@"
  35
  36 ##NAME: daemons:0
  37 #
  38 # The number of daemon processes that are started.  authdaemon is typically
  39 # installed where authentication modules are relatively expensive: such
  40 # as authldap, or authmysql, so it's better to have a number of them running.
  41 # PLEASE NOTE:  Some platforms may experience a problem if there's more than
  42 # one daemon.  Specifically, SystemV derived platforms that use TLI with
  43 # socket emulation.  I'm suspicious of TLI's ability to handle multiple
  44 # processes accepting connections on the same filesystem domain socket.
  45 #
  46 # You may need to increase daemons if as your system load increases.  Symptoms
  47 # include sporadic authentication failures.  If you start getting
  48 # authentication failures, increase daemons.  However, the default of 5
  49 # SHOULD be sufficient.  Bumping up daemon count is only a short-term
  50 # solution.  The permanent solution is to add more resources: RAM, faster
  51 # disks, faster CPUs...
  52
  53 daemons=5
  54
  55 ##NAME: authdaemonvar:2
  56 #
  57 # authdaemonvar is here, but is not used directly by authdaemond.  It's
  58 # used by various configuration and build scripts, so don't touch it!
  59
  60 authdaemonvar=@authdaemonvar@
  61
  62 ##NAME: DEBUG_LOGIN:0
  63 #
  64 # Dump additional diagnostics to syslog
  65 #
  66 # DEBUG_LOGIN=0   - turn off debugging
  67 # DEBUG_LOGIN=1   - turn on debugging
  68 # DEBUG_LOGIN=2   - turn on debugging + log passwords too
  69 #
  70 # ** YES ** - DEBUG_LOGIN=2 places passwords into syslog.
  71 #
  72 # Note that most information is sent to syslog at level 'debug', so
  73 # you may need to modify your /etc/syslog.conf to be able to see it.
  74
  75 DEBUG_LOGIN=0
  76
  77 ##NAME: DEFAULTOPTIONS:0
  78 #
  79 # A comma-separated list of option=value pairs. Each option is applied
  80 # to an account if the account does not have its own specific value for
  81 # that option. So for example, you can set
  82 #   DEFAULTOPTIONS="disablewebmail=1,disableimap=1"
  83 # and then enable webmail and/or imap on individual accounts by setting
  84 # disablewebmail=0 and/or disableimap=0 on the account.
  85
  86 DEFAULTOPTIONS=""
  87
  88 ##NAME: LOGGEROPTS:0
  89 #
  90 # courierlogger(1) options, e.g. to set syslog facility
  91 #
  92
  93 LOGGEROPTS=""
  94
  95 ##NAME: LDAP_TLS_OPTIONS:0
  96 #
  97 # Options documented in ldap.conf(5) can be set here, prefixed with 'LDAP'.
  98 # Examples:
  99 #
 100 #LDAPTLS_CACERT=/path/to/cacert.pem
 101 #LDAPTLS_REQCERT=demand
 102 #LDAPTLS_CERT=/path/to/clientcert.pem
 103 #LDAPTLS_KEY=/path/to/clientkey.pem