3.1. Startup configuration

halon-dlpd loads the non-reloadable startup configuration is read from /etc/halon/dlpd.yaml.

Below are some of the most important settings that can be configured.

Note

The example configuration in /opt/halon/share/examples/ that is usually copied to /etc/halon/ during installation contains reasonable defaults. Normally you only need to modify the secret key to use.

3.1.1. Environment directives

The default startup configuration that came with the installation package contains reasonable defaults for your platform. Some settings should however be revised.

3.1.1.1. Configuration paths

Those paths can normally be left unchanged.

environment.appconf

From where to load the running configuration. The default is /etc/halon/dlpd-app.yaml.

3.1.1.2. Other environment

Those settings should normally be left unchanged. The default startup configuration in /opt/halon/examples that came with the installation package should contain correct parameters for your operating system or distribution.

environment.socket.path

Have the API socket on a UNIX socket. This option is mutually exclusive with the environment.controlsocket.port setting. The default is /var/run/halon/dlpd.sock.

environment.socket.owner

This option is only supported with the environment.socket.path setting.

environment.socket.group

This option is only supported with the environment.socket.path setting.

environment.socket.chmod

This option is only supported with the environment.socket.path setting.

environment.controlsocket.port

Have the control socket on a TCP port. This option is mutually exclusive with the environment.controlsocket.path setting.

environment.controlsocket.address

Have the control socket listen on a specific IP address. This option is only supported with the environment.controlsocket.port setting.

environment.controlsocket.path

Have the control socket on a UNIX socket. This option is mutually exclusive with the environment.controlsocket.port setting. The default is /var/run/halon/dlpd.ctl.

environment.controlsocket.owner

This option is only supported with the environment.controlsocket.path setting.

environment.controlsocket.group

This option is only supported with the environment.controlsocket.path setting.

environment.controlsocket.chmod

This option is only supported with the environment.controlsocket.path setting.

environment.controlsocket.port

Have the control socket on a TCP port. This option is mutually exclusive with the environment.controlsocket.path setting.

environment.controlsocket.address

Have the control socket listen on a specific IP address. This option is only supported with the environment.controlsocket.port setting.

environment.privdrop.user

The user to run the process as.

environment.privdrop.group

The group to run the process as.

environment.umask

Application umask after privdrop

environment.tmpdir

The default temp path for storing extracted files. The default is /var/spool/halon/tmp/dlpd.