diff options
| author | Andreas Steffen <andreas.steffen@strongswan.org> | 2011-09-07 08:02:44 +0200 |
|---|---|---|
| committer | Andreas Steffen <andreas.steffen@strongswan.org> | 2011-09-08 12:08:17 +0200 |
| commit | f7a98122ea7d35fc2c57dc00d6fd03c4cf4b7cc9 (patch) | |
| tree | 4d01521502a7db944639996b9fde74e4cba2e9cb /man | |
| parent | fc25e330ae5f6afdf7c1842d76e4e76a1afa9f65 (diff) | |
| download | strongswan-f7a98122ea7d35fc2c57dc00d6fd03c4cf4b7cc9.tar.bz2 strongswan-f7a98122ea7d35fc2c57dc00d6fd03c4cf4b7cc9.tar.xz | |
added strongswan.conf attributes for attestation IMC/IMV
Diffstat (limited to 'man')
| -rw-r--r-- | man/strongswan.conf.5.in | 43 |
1 files changed, 32 insertions, 11 deletions
diff --git a/man/strongswan.conf.5.in b/man/strongswan.conf.5.in index 3f6e14726..8701488b4 100644 --- a/man/strongswan.conf.5.in +++ b/man/strongswan.conf.5.in @@ -565,26 +565,47 @@ Debug level for a stand-alone libimcv library Disable output to stderr with a stand-alone libimcv library .SS libimcv plugins section .TP -.BR libimcv.plugins.imc_test.command " [none]" -Command to be sent to the Test IMV +.BR libimcv.plugins.imc-attestation.platform_info +Information on operating system and hardware platform .TP -.BR libimcv.plugins.imc_test.retry " [no]" -Do a handshake retry +.BR libimcv.plugins.imc-attestation.aik_cert +AIK certificate file .TP -.BR libimcv.plugins.imc_test.retry_command -Command to be sent to the Test IMV in the handshake retry +.BR libimcv.plugins.imc-attestation.aik_key +AIK public key file .TP -.BR libimcv.plugins.imv_test.rounds " [0]" -Number of IMC-IMV retry rounds +.BR libimcv.plugins.imv-attestation.cadir +Path to directory with AIK cacerts .TP -.BR libimcv.plugins.imv_scanner.closed_port_policy " [yes]" +.BR libimcv.plugins.imv-attestation.database +Path to database with file measurement information +.TP +.BR libimcv.plugins.imv-attestation.hash_algorithm " [sha1]" +Preferred measurement hash algorithm +.TP +.BR libimcv.plugins.imv-attestation.platform_info +Information on operating system and hardware platform +.TP +.BR libimcv.plugins.imv-scanner.closed_port_policy " [yes]" By default all ports must be closed (yes) or can be open (no) .TP -.BR libimcv.plugins.imv_scanner.tcp_ports +.BR libimcv.plugins.imv-scanner.tcp_ports List of TCP ports that can be open or must be closed .TP -.BR libimcv.plugins.imv_scanner.udp_ports +.BR libimcv.plugins.imv-scanner.udp_ports List of UDP ports that can be open or must be closed +.TP +.BR libimcv.plugins.imc-test.command " [none]" +Command to be sent to the Test IMV +.TP +.BR libimcv.plugins.imc-test.retry " [no]" +Do a handshake retry +.TP +.BR libimcv.plugins.imc-test.retry_command +Command to be sent to the Test IMV in the handshake retry +.TP +.BR libimcv.plugins.imv-test.rounds " [0]" +Number of IMC-IMV retry rounds .SS libtls section .TP .BR libtls.cipher |