3.1. Startup configuration

halon-dlpd loads the non-reloadable startup configuration is read from /etc/halon/dlpd.yaml.

Below are some of the most important settings that can be configured.

Note

The example configuration in /opt/halon/share/examples/ that is usually copied to /etc/halon/ during installation contains reasonable defaults. Normally you only need to modify the secret key to use.

3.1.1. Environment directives

The default startup configuration that came with the installation package contains reasonable defaults for your platform. Some settings should however be revised.

3.1.1.1. Configuration paths

Those paths can normally be left unchanged.

environment.appconf: From where to load the running configuration. The default is /etc/halon/dlpd-app.yaml.

3.1.1.2. Other environment

Those settings should normally be left unchanged. The default startup configuration in /opt/halon/examples that came with the installation package should contain correct parameters for your operating system or distribution.

environment.socket.path: Have the API socket on a UNIX socket. This option is mutually exclusive with the environment.controlsocket.port setting. The default is /var/run/halon/dlpd.sock.

environment.socket.owner: This option is only supported with the environment.socket.path setting.

environment.socket.group: This option is only supported with the environment.socket.path setting.

environment.socket.chmod: This option is only supported with the environment.socket.path setting.

environment.controlsocket.port: Have the control socket on a TCP port. This option is mutually exclusive with the environment.controlsocket.path setting.

environment.controlsocket.address: Have the control socket listen on a specific IP address. This option is only supported with the environment.controlsocket.port setting.

environment.controlsocket.path: Have the control socket on a UNIX socket. This option is mutually exclusive with the environment.controlsocket.port setting. The default is /var/run/halon/dlpd.ctl.

environment.controlsocket.owner: This option is only supported with the environment.controlsocket.path setting.

environment.controlsocket.group: This option is only supported with the environment.controlsocket.path setting.

environment.controlsocket.chmod: This option is only supported with the environment.controlsocket.path setting.

environment.controlsocket.port: Have the control socket on a TCP port. This option is mutually exclusive with the environment.controlsocket.path setting.

environment.controlsocket.address: Have the control socket listen on a specific IP address. This option is only supported with the environment.controlsocket.port setting.

environment.privdrop.user: The user to run the process as.

environment.privdrop.group: The group to run the process as.

environment.umask: Application umask after privdrop

environment.tmpdir: The default temp path for storing extracted files. The default is /var/spool/halon/tmp/dlpd.