aboutsummaryrefslogtreecommitdiff
path: root/easy-rsa/2.0/vars
diff options
context:
space:
mode:
authorjames <james@e7ae566f-a301-0410-adde-c780ea21d3b5>2005-11-02 18:09:01 +0000
committerjames <james@e7ae566f-a301-0410-adde-c780ea21d3b5>2005-11-02 18:09:01 +0000
commit8810c26cc5782addcf1f0a40212a7d1ebe827e6f (patch)
treecdf818d2e7f8058386fba0c2a989826c4102da8c /easy-rsa/2.0/vars
parentVERSION 2.1_beta6 (diff)
downloadopenvpn-8810c26cc5782addcf1f0a40212a7d1ebe827e6f.tar.xz
Moved easy-rsa 2.0 scripts to easy-rsa/2.0 to
be compatible with 2.0.x distribution. git-svn-id: http://svn.openvpn.net/projects/openvpn/branches/BETA21/openvpn@757 e7ae566f-a301-0410-adde-c780ea21d3b5
Diffstat (limited to 'easy-rsa/2.0/vars')
-rwxr-xr-xeasy-rsa/2.0/vars55
1 files changed, 55 insertions, 0 deletions
diff --git a/easy-rsa/2.0/vars b/easy-rsa/2.0/vars
new file mode 100755
index 0000000..a4bd149
--- /dev/null
+++ b/easy-rsa/2.0/vars
@@ -0,0 +1,55 @@
+# easy-rsa parameter settings
+
+# NOTE: If you installed from an RPM,
+# don't edit this file in place in
+# /usr/share/openvpn/easy-rsa --
+# instead, you should copy the whole
+# easy-rsa directory to another location
+# (such as /etc/openvpn) so that your
+# edits will not be wiped out by a future
+# OpenVPN package upgrade.
+
+# This variable should point to
+# the top level of the easy-rsa
+# tree.
+export EASY_RSA="`pwd`"
+
+# This variable should point to
+# the openssl.cnf file included
+# with easy-rsa.
+export KEY_CONFIG="$EASY_RSA/openssl.cnf"
+
+# Edit this variable to point to
+# your soon-to-be-created key
+# directory.
+#
+# WARNING: clean-all will do
+# a rm -rf on this directory
+# so make sure you define
+# it correctly!
+export KEY_DIR="$EASY_RSA/keys"
+
+# Issue rm -rf warning
+echo NOTE: If you run ./clean-all, I will be doing a rm -rf on $KEY_DIR
+
+# Increase this to 2048 if you
+# are paranoid. This will slow
+# down TLS negotiation performance
+# as well as the one-time DH parms
+# generation process.
+export KEY_SIZE=1024
+
+# In how many days should the root CA key expire?
+export CA_EXPIRE=3650
+
+# In how many days should certificates expire?
+export KEY_EXPIRE=3650
+
+# These are the default values for fields
+# which will be placed in the certificate.
+# Don't leave any of these fields blank.
+export KEY_COUNTRY="US"
+export KEY_PROVINCE="CA"
+export KEY_CITY="SanFrancisco"
+export KEY_ORG="Fort-Funston"
+export KEY_EMAIL="me@myhost.mydomain"