46
46
<emphasis>not</emphasis> run in debug mode.
49
<para id="priority_compat">
50
GnuTLS priority string for the <acronym>TLS</acronym> handshake.
51
The default is <quote><literal
52
>SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP:+SIGN-RSA-SHA224:</literal>
53
<literal>+SIGN-RSA-RMD160</literal></quote>.
54
See <citerefentry><refentrytitle
55
>gnutls_priority_init</refentrytitle>
56
<manvolnum>3</manvolnum></citerefentry> for the syntax.
57
<emphasis>Warning</emphasis>: changing this may make the
58
<acronym>TLS</acronym> handshake fail, making server-client
59
communication impossible.
49
62
<para id="priority">
50
63
GnuTLS priority string for the <acronym>TLS</acronym> handshake.
52
<quote><literal>SECURE128​:!CTYPE-X.509​:+CTYPE-RAWPK​:!RSA​:!VERS-ALL​:+VERS-TLS1.3​:%PROFILE_ULTRA</literal></quote>
53
when using raw public keys in TLS, and
54
<quote><literal>SECURE256​:!CTYPE-X.509​:+CTYPE-OPENPGP​:!RSA​:+SIGN-DSA-SHA256</literal></quote>
55
when using OpenPGP keys in TLS,. See <citerefentry><refentrytitle
56
>gnutls_priority_init</refentrytitle>
64
The default is <quote><literal
65
>SECURE256:!CTYPE-X.509:+CTYPE-OPENPGP</literal></quote>. See
66
<citerefentry><refentrytitle >gnutls_priority_init</refentrytitle>
57
67
<manvolnum>3</manvolnum></citerefentry> for the syntax.
58
68
<emphasis>Warning</emphasis>: changing this may make the
59
69
<acronym>TLS</acronym> handshake fail, making server-client
60
communication impossible. Changing this option may also make the
61
network traffic decryptable by an attacker.
70
communication impossible.
64
73
<para id="servicename">
114
123
implies this option.
118
This option controls whether the server will announce its
119
existence using Zeroconf. Default is to use Zeroconf. If
120
Zeroconf is not used, a <option>port</option> number or a
121
<option>socket</option> is required.
added
removed
mandos-options.xml
