2 # Example configuration file. Note that this attempts to present various
3 # configuration possibilities and may not actually give any sensible
4 # configuration. For real life example see the examples/ directory.
8 # General configuration options
11 # This is the default path where to search modules
12 # You can comment it out to use builtin modules globally.
13 ModulePath = "@MODULESDIR@";
19 # The "Module" option can be either absolute or relative to the "ModulePath"
21 # If commented out forces using of built-in modules.
25 module = "aes.sim.so";
31 module = "aes.sim.so";
37 module = "aes.sim.so";
42 name = "twofish-256-cbc";
43 module = "twofish.sim.so";
48 name = "twofish-192-cbc";
49 module = "twofish.sim.so";
54 name = "twofish-128-cbc";
55 module = "twofish.sim.so";
60 name = "mars-256-cbc";
61 module = "mars.sim.so";
66 name = "mars-192-cbc";
67 module = "mars.sim.so";
72 name = "mars-128-cbc";
73 module = "mars.sim.so";
79 module = "none.sim.so";
83 # Configured hash functions
97 # Configured HMAC functions. The hash function used in the HMAC must
98 # be configured in the hash section.
101 name = "hmac-sha1-96";
106 name = "hmac-md5-96";
124 PKCS { name = "rsa"; };
131 # Server FQDN and IP address
133 hostname = "lassi.kuo.fi.ssh.com";
138 # ServerType field specifies the purpose of this server
139 # This is only a descriptive field.
141 ServerType = "Test Server";
144 # Geographic location
146 Location = "Kuopio, Finland";
151 Admin = "Pekka Riikonen";
154 # Admin's email address
156 EMail = "priikone@poseidon.pspt.fi";
159 # Run SILC server as specific user and group. The server must be initially
166 # Public and private keys
168 PublicKey = "@ETCDIR@/silcd.pub";
169 PrivateKey = "@ETCDIR@/silcd.prv";
174 # Specifies the text file displayed on client connection
176 #MotdFile = "@ETCDIR@/motd.txt";
181 PidFile = "@PIDFILE@";
187 # This section is used to set various logging files, their paths, maximum
188 # sizes and logging options.
189 # There are only four defined channels allowed for defining (see below).
190 # The log channels have an importance value, and most important channels
191 # are redirected on the less important ones, thus setting a valid logging
192 # file for "infologfile" will ensure logging for all channels, while setting
193 # logging file for "errorlogfile" will ensure logging for channels "error"
198 # If QuickLogs is true, then the logging files will be updated
199 # real-time. This causes a bit more CPU and HDD activity, but
200 # reduces memory usage. (if unsure say true).
205 # (Only if QuickLogs is false)
206 # FlushDelay tells log files update delay in case you have chosen
212 File = "@LOGSDIR@/silcd.log";
216 File = "@LOGSDIR@/silcd_warnings.log";
220 File = "@LOGSDIR@/silcd_errors.log";
224 File = "@LOGSDIR@/silcd_fatals.log";
230 # Connection classes (UNSUPPORTED)
232 # This section is used to define connection classes. These can be
233 # used to optimize the server and the connections.
243 # Configured client connections.
245 # All fields except Class are optional. Omitted fields are assumed
246 # to be generic (e.g. if the "Host" field is omitted all hosts will match
247 # this client class).
250 # Host = "127.0.0.1";
260 # Configured server administrator connections
262 # The fields "Host", "User", and "Nick", are optional but you are encouraged
263 # in using them to better identify your admins.
264 # "AuthMethod" and "AuthData" fields are mandatory. The "AuthMethod" field
265 # can be either the special string "passwd" or "pubkey" to identify the type
266 # of data specified by "AuthData".
272 AuthMethod = "passwd";
273 AuthData = "verysecret";
279 # These connections are denied to connect to our server.
281 # The "Reason" field is mandatory, while the "Host" and "Port" fields can be
282 # omitted to match everything.
285 # Host = "10.2.1.99";
287 # Reason = "Go away spammer";
291 # Reason = "You are not welcome.";
295 # Configured server connections.
297 # If server connections are configured it means that this server is
298 # router server. Normal servers must not configure server connections.
299 # Thus, if this server is not router do not configure this section. If
300 # your server is router, this must be configured.
302 # The "AuthData" option is either passphrase or file path to the public key
303 # file. If the connection is backup connection then set the "Backup" option
304 # to true. For normal connections set it false. If it is
305 # set to true then this server will be backup router.
310 AuthData = "verysecret";
318 # Configured router connections
320 # For normal servers only one entry maybe configured to this section. It
321 # must be the router this server will be connected to. For router servers,
322 # this section includes all configured router connections. The first
323 # configured connection is the primary route.
325 # The "AuthData" option is either passphrase or file path to the public key
326 # file. If you are the initiator of the connection then set the "Initiator"
327 # option to true. If you are the responder of the connection (waiting for
328 # incoming connection) then set it to false.
330 # If the connection is backup router connection then set the "BackupHost"
331 # option to the IP address of the router that the backup router will
332 # replace if it becomes unavailable. Set also the router's port to the
333 # "BackupPort" option. For normal connection leave both commented. If this
334 # backup router is in our cell then set the "LocalBackup" option to true.
335 # If the backup router is in other cell then set it to false.
340 AuthData = "verysecret";
345 #BackupHost = "10.2.1.6";