Change the rsync-ssl helper script

The new rsh-ssl-rsync helper script (replacing stunnel-rsync) supports openssl in addition to stunnel. The RSYNC_SSL_TYPE environment variable can be set to specify which type of connection to use, and the first arg to rsync-ssl can be --type=stunnel or --type=openssl to override the env var or the default of "stunnel". The helper script now looks for stunnel4 or stunnel on the PATH at runtime instead of having configure look for it at compile time.
author: Wayne Davison <wayne@opencoder.net> 2020-04-19 12:08:01 -0700
committer: Wayne Davison <wayne@opencoder.net> 2020-04-19 14:00:33 -0700
commit: 2a87d78f693f10fe5ad13af0bb9311bd3714077d (patch)
tree: 7371d2ce373bbacf10557649a940a4de56be5afc /stunnel-rsyncd.conf.in
parent: 3ba4db703045d4570c929506e477d8e692cd36c1 (diff)
download: rsync-2a87d78f693f10fe5ad13af0bb9311bd3714077d.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/stunnel-rsyncd.conf.in b/stunnel-rsyncd.conf.in
index fd28d5d4..b3fd240e 100644
--- a/stunnel-rsyncd.conf.in
+++ b/stunnel-rsyncd.conf.in
@@ -4,7 +4,7 @@ foreground = no
 pid = /var/run/stunnel-rsyncd.pid
 socket = l:TCP_NODELAY=1
 socket = r:TCP_NODELAY=1
-compression = rle
+#compression = rle
 # This must be root for rsync to use chroot -- rsync will drop permissions:
 setuid = root
 setgid = root
@@ -18,7 +18,7 @@ client = no
 
 # To allow anyone to try an ssl connection, use this:
 verify = 0
-CAfile = /etc/ssl/ca-bundle.pem
+CAfile = /etc/ssl/certs/ca-certificates.crt
 
 # To allow only cert-authorized clients, use something like this instead of the above:
 #verify = 3
author	Wayne Davison <wayne@opencoder.net>	2020-04-19 12:08:01 -0700
committer	Wayne Davison <wayne@opencoder.net>	2020-04-19 14:00:33 -0700
commit	2a87d78f693f10fe5ad13af0bb9311bd3714077d (patch)
tree	7371d2ce373bbacf10557649a940a4de56be5afc /stunnel-rsyncd.conf.in
parent	3ba4db703045d4570c929506e477d8e692cd36c1 (diff)
download	rsync-2a87d78f693f10fe5ad13af0bb9311bd3714077d.tar.gz