X-Git-Url: http://www.privoxy.org/gitweb/?p=privoxy.git;a=blobdiff_plain;f=doc%2Fwebserver%2Fuser-manual%2Fconfig.html;h=ad8e518e7856b5db52832501452c14c1f4e0c7ae;hp=fbca9367729caa6381b9de593cc8fe99db77a66b;hb=2727c136ceb730015412df0cf32d8761ffe13930;hpb=572a36c86b0873e9624908e893d1b9ed41e942bc diff --git a/doc/webserver/user-manual/config.html b/doc/webserver/user-manual/config.html index fbca9367..ad8e518e 100644 --- a/doc/webserver/user-manual/config.html +++ b/doc/webserver/user-manual/config.html @@ -2404,7 +2404,206 @@
Directory with the CA key, the CA certificate and the trusted CAs file.
+Text
+Empty string
+Default value is used.
+This directive specifies the directory where the CA key, the CA certificate and the trusted CAs file + are located.
+ca-directory /usr/local/etc/privoxy/CA
+The CA certificate file in ".crt" format.
+Text
+cacert.crt
+Default value is used.
+This directive specifies the name of the CA certificate file in ".crt" format.
+It can be generated with: openssl req -new -x509 -extensions v3_ca -keyout cakey.pem -out cacert.crt + -days 3650
+ca-cert-file root.crt
+The CA key file in ".pem" format.
+Text
+cacert.pem
+Default value is used.
+This directive specifies the name of the CA key file in ".pem" format. See the ca-cert-file for a command to generate it.
+ca-key-file cakey.pem
+The password for the CA keyfile.
+Text
+Empty string
+Default value is used.
+This directive specifies the password for the CA keyfile that is used when Privoxy generates + certificates for intercepted requests.
+Note that the password is shown on the CGI page so don't reuse an important one.
+ca-password blafasel
+Directory to safe generated keys and certificates.
+Text
+./certs
+Default value is used.
+This directive specifies the directory where generated TLS/SSL keys and certificates are saved.
+certificate-directory /usr/local/var/privoxy/certs
+The trusted CAs file in ".pem" format.
+File name relative to ca-directory
+trustedCAs.pem
+Default value is used.
+This directive specifies the trusted CAs file that is used when validating certificates for + intercepted TLS/SSL request.
+An example file can be downloaded from https://curl.haxx.se/ca/cacert.pem.
+trusted-cas-file trusted_cas_file.pem
+Privoxy has a number of options specific to the Windows GUI interface:
If "activity-animation" is set to 1, the Privoxy