summaryrefslogtreecommitdiff
path: root/doc/s6-tlsserver.html
diff options
context:
space:
mode:
authorLaurent Bercot <ska-skaware@skarnet.org>2020-05-06 11:47:33 +0000
committerLaurent Bercot <ska-skaware@skarnet.org>2020-05-06 11:47:33 +0000
commit36cd749078bb7d7107e85f2c427213046faa19f3 (patch)
treeb235792f917ea35041a98bf4c94c77ce647ef7a3 /doc/s6-tlsserver.html
parent76fee0e46b6d9862100e2f39a68c4b2e91bd5b1b (diff)
downloads6-networking-36cd749078bb7d7107e85f2c427213046faa19f3.tar.xz
Add -e option to s6-tlsserver
Diffstat (limited to 'doc/s6-tlsserver.html')
-rw-r--r--doc/s6-tlsserver.html14
1 files changed, 13 insertions, 1 deletions
diff --git a/doc/s6-tlsserver.html b/doc/s6-tlsserver.html
index bb3301f..6c1395d 100644
--- a/doc/s6-tlsserver.html
+++ b/doc/s6-tlsserver.html
@@ -148,6 +148,19 @@ generally work, but unless you're running a very public server
certificates, you probably still want TCP access rules.
</p>
+<h3> Options handled directly by s6-tlsserver </h3>
+
+<ul>
+ <li> <tt>-e</tt>:&nbsp;: indicates that
+<a href="s6-tcpserver-access.html">s6-tcpserver-access</a> should
+be invoked, even if no other option requires it, even in the absence
+of an access control ruleset. This ensures that <em>prog...</em>
+will always have access to environment variables such as TCPLOCALPORT.
+This option also ensures that the log does not get spammed with
+spurious "no ruleset" warnings if the <tt>-v</tt> option has been
+given but no <tt>-i</tt> or <tt>-x</tt> option. </li>
+</ul>
+
<h3> Options passed as is to s6-tcpserver </h3>
<ul>
@@ -192,7 +205,6 @@ certificates, you probably still want TCP access rules.
<h2> Example </h2>
-
<p>
As root:
<code> KEYFILE=/etc/ssl/private/mykey.der CERTFILE=/etc/ssl/public/mycert.pem \