upstream/unbound
1
0
Fork 0
mirror of https://github.com/NLnetLabs/unbound.git synced 2025-12-20 23:00:56 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

- In man page note that tls-cert-bundle is read before permission

Browse source 
drop and chroot.
This commit is contained in:
W.C.A. Wijngaards 2020-10-27 09:00:26 +01:00
parent 4990dae87d
commit d104727c91
2 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
doc/Changelog
View file

@ -1,3 +1,7 @@
27 October 2020: Wouter
- In man page note that tls-cert-bundle is read before permission
drop and chroot.
22 October 2020: Wouter 22 October 2020: Wouter
- Fix #333: Unbound Segmentation Fault w/ log_info Functions From - Fix #333: Unbound Segmentation Fault w/ log_info Functions From
Python Mod. Python Mod.

3
doc/unbound.conf.5.in
View file

@ -522,7 +522,8 @@ Alternate syntax for \fBtls\-port\fR.
If null or "", no file is used. Set it to the certificate bundle file, If null or "", no file is used. Set it to the certificate bundle file,
for example "/etc/pki/tls/certs/ca\-bundle.crt". These certificates are used for example "/etc/pki/tls/certs/ca\-bundle.crt". These certificates are used
for authenticating connections made to outside peers. For example auth\-zone for authenticating connections made to outside peers. For example auth\-zone
urls, and also DNS over TLS connections. urls, and also DNS over TLS connections. It is read at start up before
permission drop and chroot.
.TP .TP
.B ssl\-cert\-bundle: \fI<file> .B ssl\-cert\-bundle: \fI<file>
Alternate syntax for \fBtls\-cert\-bundle\fR. Alternate syntax for \fBtls\-cert\-bundle\fR.