4 # Format: <name>:<module path>:<key length>:<block length>
6 # If the cipher is builtin the <module path> maybe omitted.
9 aes-256-cbc:/usr/local/silc/modules/aes.sim.so:32:16
10 aes-192-cbc:/usr/local/silc/modules/aes.sim.so:24:16
11 aes-128-cbc:/usr/local/silc/modules/aes.sim.so:16:16
12 twofish-256-cbc:/usr/local/silc/modules/twofish.sim.so:32:16
13 twofish-192-cbc:/usr/local/silc/modules/twofish.sim.so:24:16
14 twofish-128-cbc:/usr/local/silc/modules/twofish.sim.so:16:16
15 mars-256-cbc:/usr/local/silc/modules/mars.sim.so:32:16
16 mars-192-cbc:/usr/local/silc/modules/mars.sim.so:24:16
17 mars-128-cbc:/usr/local/silc/modules/mars.sim.so:16:16
18 none:/usr/local/silc/modules/none.sim.so:0:0
21 # Configured hash functions.
23 # Format: <name>:<module path>:<block length>:<digest length>
25 # If the hash function is builtin the <module path> maybe omitted.
32 # Configured HMAC functions. The hash function used in the HMAC must
33 # configured to the [hash] section.
35 # Format: <name>:<hash name>:<mac length>
52 # Run SILC server as specific user and group. The server must be initially
55 # Format: <user>:<group>
61 # Server's administrative information.
63 # Format: <location>:<server type>:<admin's name>:<admin's email address>
66 Kuopio, Finland:Test Server:Pekka Riikonen:priikone@poseidon.pspt.fi
71 # Format: +<server FQDN>:<server IP>:<geographic location>:<port>
74 lassi.kuo.fi.ssh.com:10.2.1.6:Kuopio, Finland:706
79 # Format: +<public key>:<private key>
82 /etc/silc/silcd.pub:/etc/silc/silcd.prv
87 # Format: <local IP>:<Listener IP>:<port>
95 # This section is used to set various logging files, their paths
96 # and maximum sizes. All the other directives except those defined
97 # below are ignored in this section. Log files are purged after they
98 # reach the maximum set byte size.
100 # Format: infologfile:<path>:<max byte size>
101 # warninglogile:<path>:<max byte size>
102 # errorlogile:<path>:<max byte size>
103 # fatallogile:<path>:<max byte size>
106 infologfile:/usr/local/silc/logs/silcd.log:10000
107 #warninglogfile:/usr/local/silc/logs/silcd_warning.log:10000
108 #errorlogfile:/usr/local/silc/logs/error.log:10000
109 #fatallogfile:/usr/local/silc/logs/silcd_error.log:
112 # Connection classes.
114 # This section is used to define connection classes. These can be
115 # used to optimize the server and the connections.#
117 # Format: <class number>:<ping freq>:<connect freq>:<max links>
124 # Configured client connections.
126 # Format: <remote host>:<auth method>:<auth data>:<port>:<class>
128 # The <auth data> is either passphrase or file path to the public key
135 # Configured server administrator connections
137 # Format: <host>:<username>:<nickname>:<auth method>:<auth data>
139 # The <auth data> is either passphrase or file path to the public key
143 10.2.1.199:priikone:pekka:passwd:veryscret
146 # Configured server connections.
148 # If server connections are configured it means that our server is
149 # router server. Normal server must not configure server connections.
150 # Thus, if your server is not router do not configure this section. If
151 # your server is router, this must be configured.
153 # Format: <remote host>:<auth method>:<auth data>:<port>:
154 # <version ID>:<class>:<backup connection>
156 # The <auth data> is either passphrase or file path to the public key
157 # file. If the connection is backup connection then set the <backup
158 # connection> to value 1. For normal connections set it 0. If it is
159 # set to value 1 then this server will be backup router.
162 10.2.1.7:passwd:veryscret:706:1:1:0
163 10.2.1.17:passwd:veryscret13:706:1:1:1 # backup connection, that host
164 # will use this server as backup
168 # Configured router connections.
170 # For normal server only one entry maybe configured to this section. It
171 # must be the router this server will be connected to. For router server,
172 # this sections includes all configured router connections. The first
173 # configured connection is the primary route.
175 # Format: <remote host>:<auth method>:<auth data>:<port>:<version ID>:
176 # <class>:<initiator>:<backup connection>:<local backup>
178 # The <auth data> is either passphrase or file path to the public key
179 # file. If you are the initiator of the connection then set the <initiator>
180 # to value 1. If you are the responder of the connection (waiting for
181 # incoming connection) then set it to 0.
183 # If the connection is backup router connection then set the <backup
184 # connection> to value 1. For normal connection set it to 0. If this
185 # backup router is in our cell then set the <local backup> to value 1.
186 # If the backup router is in other cell then set it to value 0.
189 #10.2.1.100:passwd:veryverysecret:706:1:1:1:0:0
190 #10.2.100.131:pubkey:/path/to/the/publickey:706:1:1:1:0:0
191 #10.2.100.100:pubkey:/path/to/the/publickey:706:1:1:0:1:1
194 # Denied connections.
196 # These connections are denied to connect our server.
198 # Format: <remote host>:<port>:<comment>
201 #10.2.1.99:0:Your connection has been denied