; Certificate/key is needed in server mode and optional in client mode
cert = /home/shhttp/cert.pem

pid = /home/shhttp/pid

; Some performance tunings
socket = l:TCP_NODELAY=1
socket = r:TCP_NODELAY=1
;compression = rle

; Workaround for Eudora bug
;options = DONT_INSERT_EMPTY_FRAGMENTS

; Authentication stuff: Only trust client certificates signed by CAfile
verify = 3
CAfile = /home/shhttp/certs.pem
CRLfile = /home/shhttp/crls.pem

; Some debugging stuff useful for troubleshooting
;debug = 7
output = /home/shhttp/log

; Service-level configuration

[sync]
accept  = 443
exec    = /home/shhttp/shhttp

; vim:ft=dosini