1 |
# Configuration file for fetch-crl v2.7.x |
2 |
|
3 |
# Directory containing .crl_url files and output directory |
4 |
|
5 |
CRLDIR=/etc/grid-security/certificates |
6 |
QUIET=yes |
7 |
|
8 |
# The time in hours for which CRL download failures are accepted |
9 |
# without printing an error (instead, a warning is generated) |
10 |
# Default=24hours (used to be 0 for versions <= 2.6.6). |
11 |
# Can also overridden with the -a command-line argument |
12 |
#CRL_AGING_THRESHOLD=24 |
13 |
|
14 |
# Does the path need to be set explicitly, and if so, should we look |
15 |
# for OpenSSL with the 'old' path? Valid values are "yes", "searchopenssl" |
16 |
# and "no". Default=yes |
17 |
#RESETPATHMODE=yes |
18 |
|
19 |
# Write messages also to syslog using logger(1) if and only if the facility |
20 |
# name is set. When empty, no syslog messages are generated. Default is |
21 |
# empty. For valid facility values see logger(1) |
22 |
#SYSLOGFACILITY= |
23 |
|
24 |
# The timeout and retry arguments given to wget: |
25 |
# ... -t $WGET_RETRIES -T $WGET_TIMEOUT ... |
26 |
# Default: retries=2, timeout=10 |
27 |
#WGET_RETRIES=2 |
28 |
#WGET_TIMEOUT=10 |
29 |
# Other options to provide to wget after those set above |
30 |
#WGET_OPTS= |
31 |
|
32 |
# Overwrite files that ought to have a CRL in them, but for some |
33 |
# reason do not. There is a remote possibility that you will overwrite |
34 |
# the wrong file if you set this to "yes". Leave it to the default "no", |
35 |
# unless your file system suffers random data corruption. So: "yes" is |
36 |
# ONLY needed if your file system is rotten! |
37 |
# Default: no |
38 |
#FORCE_OVERWRITE=no |
39 |
|
40 |
# Force printing of all warning messages (usually driven by -v) if set to |
41 |
# "yes". Default is no. |
42 |
#ALLWARNINGS=no |
43 |
|
44 |
# Path to an explicit OpenSSL version to use. Default will look through |
45 |
# the path (depending on RESETPATHMODE) and Globus location directories |
46 |
#FETCH_CRL_OPENSSL=<path> |
47 |
|
48 |
# Path of a download cache directory, *exclusively writable by the user |
49 |
# running fetch-crl*, where the original downloads are stored. The |
50 |
# cache is ONLY used if this variable is set. Default is NO cache. |
51 |
# You will need to manually create this directory first with proper permissions |
52 |
#CACHEDIR=/var/cache/fetch-crl |
53 |
#CACHEDIR=${CRLDIR}/cache |
54 |
|
55 |
# Use the name of the crl_url file to find the name of the crl hash. Default |
56 |
# is to calculate the has from the CRL data itself. Set to "yes" to enable. |
57 |
#SLOPPYCRLHASHES= |